Global SMB Data Breaches 2021: an Eye-opening harsh analysis
The first thing we noticed while analysing the results for the Global SMB Data Breaches 2021 report was the information by business size this year. There were supposed to be a gap in between both Global SMB breaches and Global Enterprise breaches. This year – so far – ended up being a lot less obvious difference. In 2020, SMB breaches accounted for less than 50% in comparison with large organisations. This year these two distinct business areas are less far apart with 307 data breaches in Enterprises as well as 263 breaches in SMB companies.
An additional intriguing finding was that the leading patterns are perfectly similar for both business areas. For the first time given that we started to look at this from a business dimension perspective, the two groups are similar per various other as well as, at the very least pattern-wise, this seems like an “everybody is a target” situation.
In 2020, small companies were considerably targeted by Web Applications attacks, Other hacks and Miscellaneous Errors exploitation. The changes in these patterns account for excellent specific data, of what we see this year in Global SMB Data Breaches 2021 since the Other hack category was rectified, and the attacks that remain are largely Hacking and Malware, thus fitting into the System Intrusion pattern.
On the other hand, Global Enterprise breaches saw a reasonable amount of actual change. The top three last year were Everything Else, Crimeware and Privilege Misuse. The pattern re-calibration indicates that the majority of the Crimeware type events entered into System Intrusion and Basic Web Application Attacks, but Privilege Misuse is not a pattern that saw any type of considerable level of adjustment. As a result, this is an indicator that we saw fewer Internal actors doing mischievous things with their company’s personal data troves.
Global SMB breaches:
- 1037 incidents
- 263 confirmed data disclosures
representing 80% of breaches
- System Intrusion
- Miscellaneous Errors
- Basic Web Application Attacks