Picture of Written by

Written by

Our Statius team

We’re a small company, why would anyone want to hack us?

No one wants to hear the words “You’ve been hacked”. A feeling of dread fills the pit of your stomach, and you wonder what the extent of the damage will be. You ask yourself questions like; Is it just the website? Have they hacked my email too? Has my website been blacklisted? Have they stolen any data? Why has this happened to me? Chances are it probably wasn’t that you were ‘targeted’ exactly, but more that you have left yourself open to cyber-attacks due to less robust security measures than a larger organisation would have. In today’s digital age, cyber security is not just a concern for large corporations and government entities. Small and Medium Enterprises (SMEs) are increasingly becoming targets for cybercriminals.

Exactly this happened to us at Statius last week and our website was hacked and redirected, you may have noticed that our website is currently not available. We asked ourselves all of the above questions and more. The most important question we asked ourselves was “How do we fix this and make sure it doesn’t happen again?”

We were fortunate enough to enlist the help of the cyber security experts at ACME UC who were able to swiftly implement some measures that have allowed us to identify the malicious code in our website and remove it. We also now have additional security measures in place and a plan moving forward to ensure that we are less vulnerable to cyber-attacks in the future.

So, what does this mean for us? Thankfully, Statius store no individual’s personal data within our website, we do not have an online shop and we do not have a client portal, and so for us, whilst the hack was disruptive and we will have to rebuild the site, the damage caused is minimal. However, this could have been much worse and for many businesses cyber security is critical to ensure business continuity.

What have we learnt? There are various things you can do to mitigate the risks to your business of a cyber-attack.

  1. Understand why cyber security matters to your business. These includes such things as data protection, regulatory compliance, customer trust and operational continuity.
  2. Understand common cyber threats. These include phishing attacks, ransomware, malware and insider threats.
  3. Implement company policies around cyber security such as; employee training, policies and processes for safe software usage such as use of Multi-factor authentication, regular changing of passwords and access rights, and data encryption.
  4. Seek professional help for implementing technology to give you enhanced security. Cyber Essentials Certification can help to protect your company against common cyber threats.

 

And most importantly…

Don’t think it won’t happen to you – it is likely just a matter of time before it does. But, by prioritising cyber security, you can protect your business and limit the risk.

More insights

Better Strategies

5 steps to business planning

Well, it’s that time of year again, the Christmas songs are out and I’m already out of Whamageddon, having heard that damn song “Last Christmas” on the very first day of December! All far too early for me! In the words of another famous singer, Mr Lennon, “Another year over

Read More »
Better Strategies

Mission, vision, values… what’s the purpose?

Many organisations publish their mission, vision and values statements but what is the purpose? The question above is actually two questions: The obvious one of “what is the purpose of a mission, vision and values statements?” The second is perhaps more interesting: What is the “purpose” of an organisation and

Read More »
Better Results

SWOT analysis

The SWOT analysis is probably the archetypal marketing or business planning tool, the origins for which seem have been lost in the mists of time. Some credit an American business thinker, a guy called Albert Humphrey, who worked at the Stanford Research Institute (now SRI International) for its invention. However,

Read More »