Google training created in partnership with the national system Cybermalveillance.gouv.fr and the Federation of e-commerce and distance selling (FEVAD), to help VSEs-SMEs to defend themselves against cyberattacks. Throughout this training, learn to identify the main cyber threats and protect yourself against them using appropriate and concrete processes, instruments and information.
Cybersecurity should be a concern for both large organizations and small businesses
SMEs sometimes make mistakes by underestimating the risks. But the consequences of a cyberattack on small structures can be serious.
SMB employees are far more likely to fall victim to social engineering attacks than their large enterprise counterparts.
If you want to learn more about this type of issue, do not hesitate to use Google training after reading the article.
Small and medium-sized businesses are the main targets of cyberattacks
Cybercriminals are well aware that small and medium-sized businesses are prime targets. Given the number of companies involved, it's no surprise that cybercriminals are interested.
It should be remembered that these companies are also sub-contractors and suppliers of large companies and can therefore become targets in the supply chain.
The possibility for a small structure of recover from a cyberattack is in many cases more than illusory. I advise you to take the subject seriously and once again to follow the Google training whose link is at the bottom of the article
Economic challenges
Large enterprises can resist attacks, but what about small and medium enterprises?
Cyberattacks are far more damaging to SMBs than to larger enterprises, which are more likely to have security teams that can resolve issues quickly. On the other hand, SMEs will suffer in terms of lost productivity and net income.
Improving IT security is an opportunity to increase competitiveness and efficiency by preventing or eliminating revenue loss.
The implementation of a security policy also aims to protect the reputation of the company. We know that companies that become the target of such investigations risk losing customers, canceling orders, damaging their reputations and being discredited by their competitors.
Cyberattacks have a direct impact on sales, employment and livelihoods.
Domino effect caused by your negligence
Micro, small and medium enterprises can also be subcontractors and suppliers. They are particularly vulnerable. Cybercriminals can try to access partner networks.
These SMEs must ensure not only their own security, but also that of their customers. All companies have legal obligations. In addition, large companies increasingly need information about the security systems of their trading partners, or risk breaking their relationship with them.
An attack that would spread because of a flaw that you created. Towards that of your customers or suppliers could lead you straight to bankruptcy.
Cloud Protection
Data storage has changed significantly in recent years. The cloud has become indispensable. For example, 40% of SMEs have already invested in cloud computing. However, they do not represent the majority of SMEs. If managers still hesitate out of fear or ignorance, others prefer hybrid storage systems.
Of course, the risk increases with the amount of data stored. This is an additional reason to think not only of cybersecurity when choosing a solution, but also of the entire data chain: end-to-end protection of the entire network, from the cloud to mobile devices.
Global Insurance and Cybersecurity
Some business managers think they don't need cybersecurity because their IT security measures are strong enough. However, they are unaware of insurance requirements: business continuity plan (BCP), data backup, employee awareness, disaster recovery needs, etc. Consequently, some of them are not aware of these requirements or do not comply with them. Misunderstanding of contracts affects compliance with their terms by SMEs. It is clear that when a contract is not respected, the insurers do not pay. Imagine what awaits you if you have lost everything and are without insurance. Before heading to the Google training link that follows the article, read the following.
Attacks on SolarWinds and Kaseya
The company's cyberattack Solarwinds affected the US government, federal agencies and other private companies. In fact, this is a global cyberattack first reported by US cybersecurity company FireEye on December 8, 2020.
US President Donald Trump's national security adviser, Thomas P. Bossert, said in a New York Times article that there is evidence of Russian involvement, including Russian intelligence service SVR. The Kremlin has denied these allegations.
Cashier, a provider of enterprise network management software, announced that it had been the victim of a “significant cyberattack”. Kaseya has asked its approximately 40 customers to immediately disable its VSA software. According to a press release at the time, around 000 customers were affected and more than 1 of them may have fallen victim to the ransomware. Details have since emerged of how a Russian-linked group infiltrated the software company to carry out the world's biggest ransomware attack.
