According to one study done by the US Small Business Administration, 88% of small business owners feel their business is vulnerable to a cyber attack.1 These concerns may be well founded: according to another study, 46% of all small businesses have at some point been the target of a ransomware attack.2
Business owners are required to protect their customers’ personal information. In all 50 states, Guam, Puerto Rico, The Virgin Islands, and the District of Columbia, businesses are required to notify individuals of security breaches involving personally identifiable information.3
As evidenced by news of large-scale data breaches, online hacking has become another form of risk that businesses now face everyday. Like many risks, businesses can insure themselves against the financial damage a cyber-attack may inflict.
Cyber liability insurance may cover a range of risks, including:
- Data Breach Management: Pays expenses related to the investigation, management, and remediation of an incident, including customer notification, credit check support, and associated legal costs and fines.
- Media Liability: Covers third-party damages such as website vandalism and intellectual property rights infringement.
- Extortion Liability: Reimburses for expenses associated with losses arising from a threat of extortion.
- Network Security Liability: Covers costs connected with third-party damages due to a denial of access and theft of third-party information.
Cyber liability insurance is fairly new so expect a wide divergence of coverage and costs. It may be purchased separately or as a rider to your current business insurance policy. Be prepared to comparison shop to get a better understanding of coverage and costs.
Small business owners might also keep in mind that “an ounce of prevention is worth a pound of cure.” There are steps you can take to protect your business from becoming a cyber victim.
Consider these steps to protect your data.
- Maintain robust malware detection software and keep existing software updated.
- Train employees not to open links contained in emails from unknown senders. Research shows that 30% of security-related incidents are caused by internal actors.4
- Encrypt your important data, such as bank account information, customer credit card numbers, etc.
- Perform a security audit.
As obvious and simple as these precautions may sound, some businesses fall victim to cyber-attacks because of their failure to take them.
1. SBA.gov, 2021
2. StaySafeOnline,org, 2020
3. National Conferences of State Legislatures, 2020
4. SmallBizTrends.com, 2020
The content is developed from sources believed to be providing accurate information. The information in this material is not intended as tax or legal advice. It may not be used for the purpose of avoiding any federal tax penalties. Please consult legal or tax professionals for specific information regarding your individual situation. This material was developed and produced by FMG Suite to provide information on a topic that may be of interest. FMG Suite is not affiliated with the named broker-dealer, state- or SEC-registered investment advisory firm. The opinions expressed and material provided are for general information, and should not be considered a solicitation for the purchase or sale of any security. Copyright FMG Suite.