According to a survey from the National Cyber Security Alliance and Symantec conducted earlier this year, the majority of small and medium-sized businesses (SMBs) believe that they are "safe" from cyber security threats - despite a lack of precautions to prevent them.
According to the survey, 85% of respondents said their company is safe from hackers, viruses, malware or a cyber-security breach. 67% of respondents believe Internet security is critical to their business's success and yet, 77% lack a formal Internet security policy (or informal even, for 49%). Despite handling customer data, financial records or credit card information alongside intellectual property, SMBs show a very minimal amount of concern over losing this data through a breach.
Overall, it's clear from the survey that SMBs in the US are more dependent on the Internet for their day-to-day operations. There appears to be a lack of understanding, however, about how great the risks are for cyber attacks on SMBs (40% are directed at companies with less than 500 employees) or how to defend or respond to such attacks.
Without a security policy, minimal employee training or plans for keeping their businesses secure, SMBs may face a crude awakening by putting their company - and data - at so much risk.