Your customers need to step up their data-protection game.
That’s the big takeaway for solution providers from the just-released Verizon 2017 Data Breach Investigations Report.
Among the report’s findings: a 50 percent increase in ransomware attacks over the previous year.
That may not be a big surprise. But this should be: Despite this ransomware increase, and despite the growing media coverage surrounding its use, many organizations are still using security solutions way past their expiration dates.
Also, many organizations choose not to take necessary measures to ensure adequate security. Basically, Verizon finds, these businesses would rather pay a ransom demand than pay for security that could prevent a cyberattack…or at least reduce its impact.
Considering that the cost of cybercrime could reach an estimated $6 trillion by 2021, according to Cybersecurity Ventures, the trillion-dollar question facing cybersecurity solution providers is this: At what point will you stop accumulating data and instead start working with your customers to improve their data-protection efforts?
Cyberattacks target SMBs
The Verizon report also finds that just over half (51%) of data breaches involve malware. Ransomware rose to the fifth most common variety of malware. A whopping 95 percent of phishing attacks are tied to the installation of software on a user’s device. And 43 percent of data breaches involved phishing.
Perhaps most troubling is that 61 percent of victims in the report were businesses with fewer than 1,000 employees. In other words, small and medium businesses (SMBs) are absolutely targets for cybercriminals. What’s more, because SMBs typically have narrow margins, getting cyberattacked can be crippling.
By industry, the top 3 impacted by data breaches are financial services, healthcare and the public sector, the Verizon report finds. Yet it’s manufacturing that’s the most common target of email-based malware. Oh, and two-thirds of healthcare threats come from within the organization.
What can you do?
The Verizon report offers several tips to improve your client’s cybersecurity defenses:
> Keep data only on a “need to know” basis
> Train staff to spot the early warning signs
> Encrypt all sensitive data
> Patch promptly
> Set strong passwords, and use 2-factor authentication
> Don’t forget physical security, too
Those may seem like no-brainers. But in fact, they’re conversation pieces. Use them to start a discussion with your customers about how they can strengthen their vital cyberdefenses.
Don’t wait. Have the conversation today. Do it! Now!