Data Breaches are a Question of When, Not If
You hear on the news all of the time about big cyber-attacks on large corporations, and even government agencies. The trouble with this news coverage is that is suggests a distorted view of where cyber-attacks are taking place. These attacks are not solely hitting large organizations. Small firms represent a significant portion of those who face cyber-attacks. Being small by no means keeps you immune. In fact, small firms can be used as conduits to larger organizations. That is likely what happened in the case of Target Corporation back in 2013
If you’re a small business, then you’re a target for cyber criminals. Last year, 71% of small to medium size businesses were the victims of cyber-attacks.
Today’s concern is how you would respond to an attack. 31% of small to medium businesses do not have a plan of action for responding to IT security breaches, and 22% admit that they lack the expertise to make such a plan. A data breach is disastrous.
Your response determines whether it’s a survivable disaster. You need to have a statement for customers ready, (Australian Notifiable Data Breach law require businesses to disclose data breaches), you need to be able to quickly access backups, and you need access to professionals with experience in disaster recovery and business continuity.