According to one study done by the U.S. Small Business Administration, 88 percent of small business owners feel their business is vulnerable to a cyber-attack.1 These concerns may be well founded: according to another study, 46 percent of all small businesses have, at some point, been the target of a ransomware attack.2
Business owners are required to protect their customers’ personal information. In America, businesses are required to notify individuals of security breaches involving personally identifiable information.
As evidenced by news of large-scale data breaches, online hacking has become another form of risk that businesses now face. Like many risks, businesses can insure themselves against the financial damage a cyber-attack may inflict.
Cyber liability insurance may cover a range of risks, including:
• Data Breach Management: Pays expenses related to the investigation, management and remediation of an incident, including customer notification, credit check support and associated legal costs and fines.
• Media Liability: Covers third-party damages such as website vandalism and intellectual property rights infringement.
• Extortion Liability: Reimburses for expenses associated with losses arising from a threat of extortion.
• Network Security Liability: Covers costs connected with third-party damages due to a denial of access and theft of third-party information.
Cyber liability insurance is fairly new, therefore expect a wide divergence of coverage and costs. It may be purchased separately or as a rider to your current business insurance policy. Be prepared to comparison shop to get a better understanding of coverage and costs.
Small business owners might also keep in mind that “an ounce of prevention is worth a pound of cure.” Some businesses fall victim to cyber-attacks because of their failure to take appropriate steps to protect their business from becoming a cyber victim.
Consider these steps to protect your data:
• Maintain robust malware detection software, and keep existing software updated.
• Train employees not to open links contained in emails from unknown senders. Research shows that 30 percent of security-related incidents are caused by internal actors.3
• Encrypt your important data, such as bank account information, customer credit card numbers, etc.
• Perform a security audit.
As obvious and simple as these precautions may sound, they are significant in ensuring the continuity of your business. Taking these steps could save a lot of work, effort and money. Let’s all protect ourselves from the dangers of cyber-attacks.
1. SBA.gov, 2021
2. StaySafeOnline,org, 2020
3. SmallBizTrends.com, 2020