Digital Advisory Services

Cyberattacks: Your Small Business’s Worst Nightmare

Posted on December 27, 2021 by

Elly Mioduszewski

Elly Mioduszewski

Share This

Share on facebook
Share on twitter
Share on linkedin
Share on email

Estimates say that cyber breaches can go undetected for about 200 days on average. A lot of damage can be done in the time that companies don’t even realize they have been compromised. Phishing is the most commonly reported type of attack, followed by viruses or Trojan horses.

Should my business invest in cybersecurity?

The answer is a resounding yes and here are just three of the many reasons why.

1. Small Business: A Cybercriminal’s New Favorite Target?

When large corporations are targeted, we hear about it in the news. While we may not read it in the headlines, small businesses are common targets. In fact, more than two-thirds of businesses employing fewer than 1,000 employees have been targeted, with 58% having experienced a breach. Given the worst circumstances, 60% of small businesses could close their doors as a direct or indirect result of cyberattack damages.

According to first quarter 2021 Middle Market Business Index data, 28% of middle market executives reported a data breach in the last year. Whether it’s the lack of resources, limited staff, access to other companies’ information within a larger supply chain, or the greater effect any one attack would have to their business, smaller companies represent a unique target for criminals. If you combine that with the growing myth that cyberattacks only target large companies, every small business in the U.S. is at great risk.

2. Human Error and Its Role in a Breach

Your staff is often your top resource and a major reason for your success. That’s not the case when it comes to cyberattacks. Studies estimate that human error is responsible for anywhere from 88% to 95% of all cybercrimes. The attack technique phishing is a part of more than one-third of all cyberattacks. If left untrained, your employees may represent the most likely access point for a breach.

Adding to this is the impact of COVID-19 and a workforce being forced out of facilities. Remote work creates new access points and makes it more difficult for in-house IT to effectively monitor devices and protect sensitive information.

Your business can reduce the inherent risks of human error by investing in a cybersecurity training program that may include mock phishing attempts, employee required annual learning, in addition to many others. Cyber training programs vary widely and can be designed for your business.

3. The Costs of a Cyberattack are More than You Think

Less than one-third of all businesses rate their ability to properly identify or prevent a cyberattack as highly effective. The direct and indirect costs associated with these attacks can be staggering. Cybersecurity insurance is a good first step on your cyber program journey. Beyond the immediate hit on company production, the costs you could incur include:

  • System downtime
  • Reduced efficiency and supply chain slowdowns
  • Reputational damages and related trust issues
  • Financial burdens of making one-time or multiple ransom payments

Contact Us

You don’t have to combat cyberattacks alone. Contact us today if you need support with your cybersecurity strategy. We can connect you with the professionals and resources who can help.

Elly Mioduszewski


Elly brings Big 4 experience and a background in both accounting and technology to the firm’s digital advisory team. She is known for being process-oriented & poised.

Related Insights

Digital Advisory Services

3 Keys to Building a Data-Driven Culture

Posted on April 19, 2022 by

Elly Mioduszewski
Bryan Powrozek
Building a data-driven culture that can propel your business to the next level of success demands fresh thinking. The entrepreneurial “gut feel” that brought your original idea to life won’t give you the analytical insights you need to stay on a reliable path to growth and profitability. The high-stakes business decisions you’ll be called on to make in the future will depend a lot on the systems choices you make today. Here are three big ideas that can help.

Digital Advisory Services

Data Analytics: Optimize Your Path to a Speedy Sale

Posted on April 12, 2022 by

Ben Smith
Elly Mioduszewski
Many business leaders are so invested in getting through the day they may not have the time to dream about or plan for the future. Whether you’ve got someone ready to buy your company or not, it is always prudent to be ready for the next stage of your business. 

Digital Advisory Services

6 Signs Your ERP isn’t Working Hard Enough

Posted on February 3, 2022 by

Elly Mioduszewski
Bryan Powrozek
Enterprise Resource Planning is an essential software tool for monitoring all kinds of businesses. No matter how advanced an ERP software product might be, the ROI depends on how well it’s implemented, how carefully your team applies its features to the needs of your business, and how many of your core processes are integrated with it.

Sign up for our newsletters

Get general business and industry-specific news and knowledge straight from our accounting specialists.

The Sound of Automation Podcast

The Sound of Automation Podcast

Industrial automation businesses are the driving force behind Industry 4.0, and Clayton & McKervey is here to help.

Insights & Perspectives

Data-driven decision making: 3 key insights for business owners

What does it take to build a data-driven business? For self-reliant leaders who feel they’ve hit a plateau when it comes to scaling a business, adopting a data-driven approach can be a breakthrough success strategy. Using data in a more focused way helps good engineers become good entrepreneurs. It’s about creating balance. Here we take a look at key insights for business owners when using data in decision making.

Read More

The Sound of Automation Podcast

Industrial automation businesses are the driving force behind Industry 4.0, and Clayton & McKervey is here to help.

Skip to content