Just because a business is small doesn’t mean it won’t suffer DDoS attacks. Cyber criminals will victimize almost anyone, and small businesses can be easy targets. Very often small businesses don’t feel vulnerable to cyber threats, because they assume that cyber criminals prefer to launch attacks on large companies. Actually, cyber criminals prefer to target small businesses because they typically don’t have resources for high end cyber security protection. A 2016 Ponemon Institute report, “The 2016 State of SMB Cybersecurity,” states that 55% of small businesses reported a cyber breach between 2015 and 2016.
In terms of distributed denial of service (DDoS) attacks, many small businesses assume that hackers target only high-profile companies, and use large-scale attacks that cripple a website or application. However, the truth is that a variety of organizations are victims of DDoS attacks, and research from our Q2 - Q3 2017 DDoS Trends Report has shown that most DDoS attacks are small, low-threshold attacks. Make no mistake, there is often a connection between DDoS attacks and security breaches. Although small DDoS attacks don’t seem dangerous, they often mask nefarious security breaches.
Small businesses that are third party vendors to large businesses really have to step up their cyber security game to protect their networks, because large businesses are increasingly concerned about the quality of their network partners. The Aon Cyber Solutions 2018 Cybersecurity Predictions report, explains why:
“In 2018, global organizations will need to factor into third-party risk management the increased complexities in how their business partners are using the IoT. However, we will not see this happen, and as a result we predict a large company will be brought down by an attack on a small vendor or contractor that targets the IoT as a way into their network. This will be a wake-up call for large organizations to update their approach to third-party risk management, and for small and midsized businesses (SMBs) to implement better security measures or risk losing business.”
It’s easier than ever for anyone to launch a DDoS attack, now that malicious actors can simply buy or rent hacking as a service online. Malware tools and botnets for hire have grown more sophisticated and, incredibly, less expensive and easier to implement. That spells trouble for businesses everywhere, of all sizes, but especially small businesses, because they typically don’t have the resources to protect against the myriad cyber threats.
Many small businesses rely primarily on a Managed Security Service Provider (MSSP) to protect them from cyber threats. The easiest way for small businesses to get DDoS protection is to subscribe to DDoS Protection as a Service (DPaaS), which they can get from a MSSP, Hosting Provider or Internet Service Provider; it makes perfect sense for such providers to offer DPaaS; the SmartWall Service Portal enables providers to onboard customers, assign protection service levels and view dashboards for each. Protected customers can login to their own view, to access traffic and DDoS attack reporting and analytics, and understand the value of the protection they are receiving.
For more information, contact us.