• Skip to main content
  • Skip to header right navigation
  • Skip to site footer
  • X
  • Facebook
  • YouTube
  • LinkedIn
Support
Screen Connect
Pay Online
SWK logo.

SWK Technologies

Software Solutions & Services

  • Accounting & ERP Software
      • Acumatica Cloud ERP
        • Overview
        • Construction
        • Distribution
        • Field Service
        • Financial Management
        • Manufacturing
        • Professional Services
        • Project Accounting
        • Retail-Commerce
      • Sage Intacct
        • Overview
        • Construction and Real Estate (CRE)
        • Distribution Operations for Sage Intacct
        • Financial Services
        • Healthcare
        • Manufacturing Operations for Sage Intacct
        • Nonprofits
        • Professional Services
        • Sage Intacct Payroll powered by ADP
      • Sage 100
        • Overview
        • Business Intelligence
        • Core Accounting & Financials
        • Distribution
        • Manufacturing
        • Payroll
        • Sage 100 Contractor
      • More Accounting Products
        • QuickBooks
        • Sage 50
        • Sage 300
        • Sage 500
        • Sage BusinessWorks
      • ERP Add-ons
        • ADP Workforce Now
        • Altec
        • Avalara
        • AvidXchange
        • BigCommerce
        • CIMCloud
        • Cloud Hosting
        • DataSelf
        • Fortis
        • FreightPOP
        • Microsoft 365
        • Netstock
        • Ottimate
        • Sage Fixed Assets
        • Sage HRMS
        • Sage Intacct Payroll powered by ADP
        • Savant WMS
        • Scanco
        • ScanForce
        • Solver
        • SPS Commerce
        • Velixo
        • Workforce Go!
      • More ERP Add-ons
        • Bizinsight
        • Concur
        • Crystal Reports
        • Fraxion
        • Fusion RMS
        • FYISoft
        • JobOps
        • KnowledgeSync
        • Lockstep Collect
        • Nectari
        • Pacejet
        • Planning Maestro
        • Sage CRM
        • Sage Intelligence
        • Scissortail HCM
        • Service Pro
        • ShipStation
        • Shopify
        • Starship
        • Sugar CRM
        • Time & Billing Pro
        • Timekeeper
        • True Sky
      • Industries
        • Construction
        • Distribution
        • Financial Services
        • Healthcare
        • Manufacturing
        • Nonprofit
        • Professional Services
        • Retail
  • Managed Cloud Services
      • Managed Services
        • IT Support
        • Cloud Hosting
        • Infrastructure-as-a-Service
        • Managed Cloud Services
        • vCIO
        • Acumatica Infrastructure
      • IT Solutions
        • Backup & Continuity
        • Cybersecurity
        • Email Hosting
        • Microsoft 365 Services
        • Virtualization
  • Consulting & Implementation
    • Business Technology Consulting
    • eCommerce
    • Financing
    • Human Capital Management
    • Managed Cloud & IT Services
    • Partner Program
    • Software Development
    • Software Implementation
  • Resources
    • Help Desk
    • Blog Posts
    • Payments Portal
    • Webinars
    • YouTube Channels
    • Acumatica Resources
    • Sage Intacct Resources
    • Sage 100 Resources
    • IT Resource Pages
  • About
    • About SWK
    • Awards & Recognition
    • Life@SWK
    • Careers
    • Success Stories
    • SWK Gives
  • Contact
    • Contact Us
    • Support
    • Our Locations

SMBs Exposed to Cyber Attack – and It’s Their Fault

July 29, 2019 by Hector

Home » Blog » SMBs Exposed to Cyber Attack – and It’s Their Fault

SMBs are increasingly at risk of cyber attack year over year, and a majority of SMB leaders and employees remain ignorant to the former.

Research into cybersecurity for small-and-medium-sized-businesses repeatedly reveals two things:  SMBs are increasingly at risk of cyber attack year over year, and a majority of SMB leaders  and employees remain ignorant to the former. The number of SMBs which have experienced network breaches continues to grow, as does the frequency of these attacks and the amount of damage that successful data penetrations or system infections cause. The factors behind these trends remain relatively consistent, including a lack of individual and organizational best practices, budgetary concerns when it comes to personnel and tools, and opportunity for hackers in the form of said lack of best practices and tools.

Concerning the widespread lack of best practices, surveys show that employees (including those on the executive level) consistently remain the biggest gap in an any organization’s network security. C-suite officers provide the most valuable targets to hackers, but anyone with some level of access to data controls offers an opportunity to exploit in a cyber attack. Cybercriminals seeking a better return from compromising an individual’s personal information, but not willing to risk breaching a larger corporation’s network security will begin looking for an entryway into an SMB’s systems through easy victims.

Social networking platforms are ubiquitous in the modern digital world and bestow a wealth of background information for any attacker to discover via a simple search engine. Hackers utilize social engineering as a cost-effective method of gathering enough data on targets of opportunity that can be pursued for a phishing campaign. The details they obtain allow them to craft increasingly sophisticated fraudulent messages; even if an email might contain a few errors in the copy or the sender’s address, committed cybercriminals will ensure they are visually deceptive enough to drop the victim’s guard.

Even if an attacker does not follow through with a phishing attempt, there are plenty of other ways for them to leverage personal data to breach a business’s network security. Hackers may track a travelling executive relying on hotel Wi-Fi, crack weak passwords using social media information, or set up dummy versions of company websites laced with malware. Just knowing that you have data that you consider critical can be all an attacker needs to launch a ransomware campaign that will infect your system and lock down your files.

Cybercriminals seeking monetary gain do not present the only problem either, as “hacktivists,” state-sponsored and cyberwarfare nation-state hackers are targeting SMBs in certain sectors as well. Such groups based in Russia, China and North Korea are focusing on disrupting the manufacturing, energy and other industries to drive political outcomes and any business of any size is a legitimate target. Some of these nation-backed attackers seek both political and monetary gain simultaneously and poach data from America businesses for foreign governments or companies to increase their competitiveness in the world economy.

Research into cybersecurity for small-and-medium-sized-businesses repeatedly reveals two things: SMBs are increasingly at risk of cyber attack year over year, and a majority of SMB leaders and employees remain ignorant to the former. The number of SMBs which have experienced network breaches continues to grow, as does the frequency of these attacks and the amount of damage that successful data penetrations or system infections cause. The factors behind these trends remain relatively consistent, including a lack of individual and organizational best practices, budgetary concerns when it comes to personnel and tools, and opportunity for hackers in the form of said lack of best practices and tools. Concerning the widespread lack of best practices, surveys show that employees (including those on the executive level) consistently remain the biggest gap in an any organization’s network security. C-suite officers provide the most valuable targets to hackers, but anyone with some level of access to data controls offers an opportunity to exploit in a cyber attack. Cybercriminals seeking a better return from compromising an individual’s personal information, but not willing to risk breaching a larger corporation’s network security will begin looking for an entryway into an SMB’s systems through easy victims. Social networking platforms are ubiquitous in the modern digital world and bestow a wealth of background information for any attacker to discover via a simple search engine. Hackers utilize social engineering as a cost-effective method of gathering enough data on targets of opportunity that can be pursued for a phishing campaign. The details they obtain allow them to craft increasingly sophisticated fraudulent messages; even if an email might contain a few errors in the copy or the sender’s address, committed cybercriminals will ensure they are visually deceptive enough to drop the victim’s guard. Even if an attacker does not follow through with a phishing attempt, there are plenty of other ways for them to leverage personal data to breach a business’s network security. Hackers may track a travelling executive relying on hotel Wi-Fi, crack weak passwords using social media information, or set up dummy versions of company websites laced with malware. Just knowing that you have data that you consider critical can be all an attacker needs to launch a ransomware campaign that will infect your system and lock down your files. Cybercriminals seeking monetary gain do not present the only problem either, as “hacktivists,” state-sponsored and cyberwarfare nation-state hackers are targeting SMBs in certain sectors as well. Such groups based in Russia, China and North Korea are focusing on disrupting the manufacturing, energy and other industries to drive political outcomes and any business of any size is a legitimate target. Some of these nation-backed attackers seek both political and monetary gain simultaneously and poach data from America businesses for foreign governments or companies to increase their competitiveness in the world economy. SMB occupy a precarious place in the web of modern cybersecurity – too small for the expensive cybersecurity solutions of corporate giants like IBM, but too big for hackers to ignore.

SMB occupy a precarious place in the web of modern cybersecurity – too small for the expensive cybersecurity solutions of corporate giants like IBM, but too big for hackers to ignore. The research cited at the beginning of this article – and many other studies – indicate that the most common practice for a majority of SMBs is to simply rely on their smaller size as a deterrent against being targeted. The data above clearly demonstrates this is an ineffective strategy.

This is an especially dangerous for businesses on or approaching the “medium” side of SMB, where both new technology and growth bring additional touchpoints and network gaps that hackers can exploit. Any SMB doing business in the 21st century must no longer treat implementing a comprehensive cybersecurity plan as a luxury – a defended network is now a requirement to exist.

To learn more about today’s best practices for your network and data management view our free webinar, Watch Now.


[fc id=’34’][/fc]

Category: Blog, Cybersecurity, IT Services

Sidebar

Recent Posts

  • How Your ERP Software Impacts Tariff Costs
  • How a Recreational Play Structure Builder Laid the Groundwork for Their Lasting Growth
  • Why Financial Services Firms Need Phishing Defense
  • Acumatica General Ledger Training – Key Tips & Tricks
  • Sage Intacct vs. Sage 500: Best ERP for CFOs and Financial Leaders
  • What is the Relationship Between Cybersecurity and Cyber Insurance? 
  • Guide for Sage Intacct Credit Card Management

Categories

Ready to take the next step?

Contact SWK today to get in touch with one of our experts. We’ll go over your business challenges and unique needs, and see where you can unlock new value from your technology and make your operations run easier.

Get in touch!

Our Latest Posts

Cargo ship "Tokyo Triumph" loaded with shipping containers in various colors, representing international trade and supply chains affected by tariffs impacting manufacturing operations.

How Your ERP Software Impacts Tariff Costs

Read moreHow Your ERP Software Impacts Tariff Costs
Recreational Play Structure

How a Recreational Play Structure Builder Laid the Groundwork for Their Lasting Growth

Read moreHow a Recreational Play Structure Builder Laid the Groundwork for Their Lasting Growth
Hands holding an open silver padlock over a laptop keyboard, symbolizing cybersecurity vulnerabilities that phishing attacks exploit in financial services firms

Why Financial Services Firms Need Phishing Defense

Read moreWhy Financial Services Firms Need Phishing Defense

Awards and Accreditations

Top work places in NJ 2020.
Acumatica the Cloud ERP gold certified partner.
The Gold Microsoft partner logo on a black background.
Sage business partner diamond logo.
Dell Technologies Gold Partner
Sage tech partner logo.

Stay in the know!

Subscribe for exclusive ERP, process automation, IT and cybersecurity news.

Twitter
  • Facebook
  • YouTube
  • LinkedIn

Home
About
Contact

Support
Screen Connect
Pay Online
Downloads

SWK logo.

Headquarters:
120 Eagle Rock Ave, Suite 330
East Hanover, NJ 07936

Contact:
info@swktech.com
(877) 979-5462

Copyright © 2025 · SWK Technologies, Inc. · All Rights Reserved · Terms of Use · Privacy Policy

This site uses cookies to collect information about your browsing activities in order to provide you with more relevant content and promotional materials, and help us understand your interests and enhance the site. By continuing to browse this site you agree to the use of cookies. Visit our privacy policy to learn more.I understand