The cyber security risk to SMEs

By StoneHouse Logic

09 Feb 2015

One of the topics I always raise when visiting potential clients is what measures they have in place to protect their IT network and business from internet borne threats.

By Andy Long, Stonehouse Logic.

Disappointingly, a lot of small business owners and directors will often either plead ignorance in this department or, more worryingly, not feel this is something that will effect an SME. A common response is that why would a cyber-criminal target my little business, surely they are after the big corporations? The fact is, most large corporations have extensive budgets for cyber security making them a very difficult nut to crack. This has resulted in hackers moving lower down the chain and specifically targeting smaller business with weaker systems.

It's important to understand that today's hackers are no longer the spotty 16 year old sat in his bedroom trying to cause a bit of havoc. Cyber-crime is big business and is carried out by advanced criminal organisations and even governments. So ask yourself, do you have anything that may be of interest to them? The simple answer is if you have money in the bank, have some intellectual property such as a blueprint or formula that is unique or even if you are in the supply chain to a larger organisation then then the answer is most definitely yes.

Here are some facts. In 2014, 60% of small business reported a security breach. The cost of the worst breaches on average ranged from £60k to £115k and this figure has increased year on year for the last three years. I personally helped a local business that had what the owner described as a "substantial amount of money" taken from their bank account due to a security breach.

Increasingly, security breaches are cleverly targeted at a specific company. It doesn't take much detective work to find the names of people within a business and at that point a criminal organisation can start to use a "social engineered" attack with personalised emails to an employee containing malware, quite often followed up by phone calls claiming to be from their bank. This was the method used against the company I mentioned earlier and within minutes two transactions had been taken from the account.

Another threat that businesses often forget about is that of employees. You trust your employees with access to sensitive data and systems, however a large proportion of security breaches are either maliciously or accidentally caused by staff members. This can be either stealing important data or information, sabotaging data or just plain and simple deleting data by accident.

So what basic steps can you take to help protect your business? Here is a checklist:-

Malware protection

Ensure up to date antivirus is installed on all systems and that Windows or Mac OS security patches are updated regularly. Running out of date operating systems (such as Windows XP) and internet browsers is an easy way to invite problems

Network security

Use an effective firewall to protect your network at the boundary and ensure your wireless network is secure

Secure configuration

Keep an inventory of your IT equipment and software and use policies to ensure users have effective and difficult to crack passwords

Manage user privileges

Keep access for staff and third-parties to the minimum. Over-privileging users is a common way for data to be compromised or stolen.

Home and mobile working

Where possible, encrypt sensitive data on mobile devices and ensure online transmission of data is via secure methods only.

Removable media

Restrict use of media such as USB drives and memory cards and ensure any sensitive data that needs to be stored on these is encrypted.

Train your staff

This is possibly the most important area. Ensure your staff are aware of the risks and their role in keeping the business secure. As you can see, some fairly basic steps will help protect your business and mitigate the risk posed by cyber threats. If you have concerns or would like some further advice then please contact StoneHouse Logic and we will happily discuss how you can improve your IT security.

Enjoyed this? Read more from StoneHouse Logic

Latest news

1

Construction begins on new Civil Service office building in Talbot Gateway Alan McBride Muse Will Town Defence Infrastructure Organisation Jennifer Chard Defence Business Services Cllr Lynn Williams Blackpool Council Garry Bowker Vinci

Construction begins on new Civil Service office building in Talbot Gateway

20 May 2025

2

Skiddle raises over £750,000 for charities Skiddle cheque presentation to Alder Hey Hospital

Skiddle raises over £750,000 for charities

20 May 2025

3

Former Victorian Hotel approved for residential conversion The site

Former Victorian Hotel approved for residential conversion

19 May 2025

4

REVOLUTION PARK: Work starts on Darwen’s new home of advanced manufacturing Oliver Webber, Tracy Clavell-Bate and Tim Webber from Barnfield Group with Cllr Phil Riley, second from right, Leader of Blackburn with Darwen Council

REVOLUTION PARK: Work starts on Darwen’s new home of advanced manufacturing

19 May 2025

5

Two Cuckoo Gins named winners in The Gin Guide Awards 2025 Mark Long

Two Cuckoo Gins named winners in The Gin Guide Awards 2025

19 May 2025

Background image for hub sign up block

LBV Hub

Leverage Lancashire Business View platforms

Post your news
Post your events
Post your offers
Build your network
Improve your SEO
Gain coverage in the magazine
Sign-up
Events
LBV122 May/June Launch Event
121 Lancashire Business View Magazine Launch
Networking
21 May 2025

LBV122 May/June Launch Event

Lancaster and Morecambe College, Lancaster, LA1 2TY

08:30 - 10:30

Sub36 Networking
Networking
11 Jun 2025

Sub36 Networking

British Jewellery School, Scorton, PR3 1BA

15:00 - 17:00

Lancashire Net Zero Carbon Conference
Net Zero Carbon Social 1200pxtrident 2
Networking
18 Jun 2025

Lancashire Net Zero Carbon Conference

Crow Wood Hotel & Spa Resort, Burnley, BB12 0RT

08:30 - 13:00

Lancashire Built Environment Conference 2025
BEC 315 X 315 Px
Networking
25 Sep 2025

Lancashire Built Environment Conference 2025

Blackpool Football Club, Blackpool, FY1 6HX

08:30 - 13:00

CMI Level 5 Management and Leadership Course
UCLanAerialCampus.jpg.jpg
LBV Hub Seminars
21 Feb 2025 - 21 Feb 2026

CMI Level 5 Management and Leadership Course

Preston Campus, Preston , PR1 2HE

09:00 - 17:00

CMI Level 5 Project Management Course
UCLanAerialCampus.jpg.jpg
LBV Hub Seminars
21 Feb 2025 - 21 Feb 2026

CMI Level 5 Project Management Course

Preston Campus, Preston, PR1 2HE

08:00 - 17:00

RISE - The Academy for Female Leaders and Managers
WENDY BOWERS RISE Illustrstion copy.jpg.jpg
LBV Hub Seminars
02 Apr 2025 - 08 Oct 2025

RISE - The Academy for Female Leaders and Managers

East Lancashire Chamber of Commerce, Clayton le Moors, BB5 5JR

09:00 - 15:30

Preston Freelancer Meet-Up: May
Freelancer Meet-Up May.png.png
LBV Hub Networking
22 May 2025 - 22 May 2025

Preston Freelancer Meet-Up: May

society1, Coworking Space, Preston, PR1 3LT

10:00 - 11:30

Amber River True Bearing quarterly investment seminar
LBV Hub Seminars
22 May 2025 - 22 May 2025

Amber River True Bearing quarterly investment seminar

Cottons Hotel & Spa , Knutsford, WA16 0SU

16:00 - 18:00

The Business Network Central & East Lancashire
LBV Hub Networking
22 May 2025 - 22 May 2025

The Business Network Central & East Lancashire

Mytton Fold, Langho, BB6 8AB

11:30 - 14:15

Liverpool Business Expo 2025
https---cdn.evbuc.com-images-881365363-4862066883-1-original.20241023-085714.jpeg.jpg
LBV Hub Awards
23 May 2025 - 23 May 2025

Liverpool Business Expo 2025

Aintree Racecourse , Liverpool , L9 5AS

09:00 - 15:00

Advantage: AI – A Workshop for Business Leaders – May 29
Artboard 15.png.png
LBV Hub Seminars
29 May 2025 - 29 May 2025

Advantage: AI – A Workshop for Business Leaders – May 29

Door4 Office, Burnley Wharf, Manchester Road, Burnley, BB11 1JG

09:00 - 11:00

Advertise with us

Reaching 50,000 members, our print, digital and event platforms offer a fantastic way to raise your business profile and help you grow.

Find out more LBV122 Online Graphic
Subscribe now

Weekly news bulletin