Tag Archive for: phishing

How Small Businesses Fall Victim to Cyber Attacks

/in ,

Cyber attacks are on the rise—and no business, big or small, is immune to the devastating financial loss that a cyber attack can have. So, let’s discuss a few aspects of cyber attacks to look out for, including:

  • What is phishing?
  • Why is it a problem?
  • Why are small businesses targeted?
  • How can your business prevent becoming the victim of a cyber attack?

Let’s dive in.

What is Phishing?

Phishing is an ever-growing concern defined as the “technique for attempting to acquire sensitive data, such as bank account numbers, through a fraudulent solicitation in email or on a website, in which the perpetrator masquerades as a legitimate business or reputable person.”

According to Brenda Jo Robyn, founder of Competitive Edge Insurance, phishing is “any activity that compromises your organization’s security.”

For more on phishing, read our article: “Why Is Phishing the #1 Thing Killing Small Businesses?

Why is Phishing a Problem?

Let us provide an example of the dangers of phishing.

On February 5, 2021, according to The Pew Charitable Trusts, “a plant operator for the city of about 15,000 on Florida’s west coast saw his cursor being moved around on his computer screen.”

The cursor continued to move, “opening various software functions that control the water being treated [and boosting] the level of sodium hydroxide—or lye—in the water supply to 100 times higher than normal.”

If you didn’t know, the consequences of this breach could have been deadly if not caught immediately, as lye poisoning can result in:

  • Burns
  • Vomiting
  • Severe pain
  • Bleeding

While most cases might not involve the extremes of lye poisoning, this example shows the severity of phishing today. As a result, governments, states, businesses (big or small), and individuals should act accordingly to strengthen their cybersecurity efforts.

Why Do Data Thieves Focus on Small Businesses?

The consequences of a cyber attack on a small business are particularly severe. 60% of small businesses that have been hit by a cyberattack end up shutting down within six months of the attack.

Despite the irreversible aftermath of falling victim to a cyber attack and the fact that 43% of online attacks are now aimed at small businesses, CNBC reports that only 14% are prepared to defend themselves.

Interested in some more statistics?

Cyber attacks are not only extremely expensive to recover from but they also damage your business’s reputation and productivity, and can even be dangerous in the event of personal data being stolen.

This is why it is crucial to protect your small business from cyberattacks. But how can you protect yourself? What can the Florida plant case study teach us?

How Can You Prevent Phishing?

Luckily, there are measures you can take to prevent phishing as a business owner. Let’s discuss some options.

Training

  • Training your employees: To be vigilant; educate them on common phishing traps, email scamming tactics, and how to send data securely (In the Florida case study mentioned earlier, the employee who noticed the breach reported it immediately).
  • Training IT: To know what to look for

Be sure to document your training and review it on a weekly or quarterly basis with employees and staff.

Due Diligence

Ensure your business is conducting thorough, routine cybersecurity due diligence.

According to Security Scorecard, cybersecurity due diligence is “the process of identifying and addressing cyber risks across your network ecosystem.” Doing so provides “insights into potential gaps in network security so that they can be addressed before they are exploited by cybercriminals.”

For those who are interested in seeing where their business is in terms of safety, read on to learn how you can measure your company’s cybersecurity risk.

Have a Planned Crisis Response in Place

When it comes to cyber risk, there’s nothing worse than being ill-prepared. Of course, we couldn’t write about cyberattacks without mention of investing in a cyber liability insurance policy for your business.

A cyber liability policy might include:

  • Data Breach Coverage
  • Business Interpretation Loss Reimbursement
  • Cyber Extortion Defense
  • Forensic Support
  • Legal Support
  • Coverage beyond a General Liability Policy

As a small business, you must be prepared—because the consequences can be insurmountable. Interested in learning more about cyber insurance and why you need it? Read on in our article “Why Does My Business Need Cyber Insurance?

Why is Phishing the #1 Thing Killing Small Businesses?

/in , ,

What is phishing? And no, we’re not talking about the activity of catching fish for food or sport. Phishing, spelled with a ‘ph,’ is an ever-growing concern defined as the “technique for attempting to acquire sensitive data, such as bank account numbers, through a fraudulent solicitation in email or on a web site, in which the perpetrator masquerades as a legitimate business or reputable person.”

But why is phishing especially harmful to small businesses? Why are they being targeted? We have all the answers and more, thanks to Brenda Jo Robyn, founder of Competitive Edge Insurance.

So, welcome to ‘Why is Phishing the #1 Thing Killing Small Businesses?’ We hope you stick around to learn something new, including how you might protect yourself as a small business owner.

What is Phishing?

Today, phishing can come in a variety of forms. According to Brenda Jo, phishing is “any activity that compromises your organization’s security… It can come in the way of an email or a text or an application.” These applications that retrieve your data can be on your computer, phone, even your iPad. Scammers target you and ask questions to get your information in really creative ways.

An Example of Phishing

Let’s say you receive an email that you’ve been expecting from Bank of America. Why not just ignore it? Well, because…

“It looks like you really should open it. [After all,] it’s a secure document for the bank you’ve been working with lately,” says Brenda Jo. The culprits know you’ve been waiting for this specific type of document to arrive in your inbox because they’ve been screening your emails. 

“So, now they have captured that you’re working with this bank and now this bank is sending you a secure document that you need to open… You open it out of their Google docs, and all of a sudden, bam, you got a worm or a virus on your computer,” says Brenda Jo.

“That’s going to either start going through all your files and looking for stuff. They’re gonna track your emails or they’re going to track your keystrokes.”

Phishing is huge right now. Brenda Jo continues. “I can’t stress enough how important it is to make sure that your computers and data is secure from others. There are a lot of what are called ‘bad elements’ or ‘bad actors’ out there that are trying to steal your data… Right now data is money. And the more data you have, the more money you can make.”

How Dangerous is Phishing for Small Businesses?

The statistics speak for themselves. Right now, 60% of small companies that have been hit by a cyber attack are closing their doors within six months. The reason? It is very costly to come back from a cyber attack.

Most small businesses don’t have the collateral, backing, or lines of credit to make themselves whole again after an attack of this caliber.

How Can Small Businesses Protect Themselves from Phishing?

Training

Focus on training.

  • Training your employees: (For example, they need to know how not to send excel spreadsheets emails! Instead, create a zip file or convert the document into a PDF. Why? It is very easy to scrape data from an excel file while in an email.)
  • Training IT: They need to know what to look for.

Due Diligence

Due diligence is the bare minimum. Document your training and go over it on a weekly or quarterly basis. Next, ensure your IT systems are multi-layered. This means not only having firewalls on your computers and servers but also helpful, educated IT personnel available.

Develop a Planned Crisis Response

A planned crisis response includes a cyber liability policy. As Brenda Jo says, “one of the things that kills the small business is the lack of PR or response to their clients and/or vendors when a phishing attack occurs and data has been compromised.”

“It’s very expensive to go and let everybody know, ‘Hey, your information was taken and here’s the year’s worth of credit monitoring’”—especially if the data is health-related. 

You might face both federal fines as well as fines from the state government. The costs add up, and that’s where cyber liability comes in to help.

Reach Out to Competitive Edge Today

As you look at your coverage, think of the potential for cybersecurity issues, evaluate your tolerance for risk, and take the time to look at your policies in detail. As experts, we at Competitive Edge can tell you where you are vulnerable and what the risk might cost you. It is then your decision to accept the risk or mitigate it with coverage. You know what we would do.
Interested in learning more about the dangers of ransomware and why the need for cyber liability coverage is increasing? Read on in cyber liability coverage for the new era of ransomware.

LET’S TALK

WANT TO KNOW HOW MUCH YOU COULD BE SAVING ON YOUR INSURANCE COSTS?

WANT TO KNOW HOW MUCH YOU COULD BE SAVING ON YOUR INSURANCE COSTS?

LET’S TALK

Connect With Us

Competitive Edge Insurance

LIC #0H31982

P: 619-259-5459
F: 619-377-0144

830 Orange Ave Suite L Coronado, CA 92118

Privacy Policy

Hours of Operation

Monday – Friday 8:00AM – 5:00PM

Saturday Closed

Sunday Closed

© Copyright 2021- Competitive Edge Insurance

site design by digitalstoryteller.io

© Copyright 2021- Competitive Edge Insurance
site design by digitalstoryteller.io