More than half (54%) of IT professionals blame negligent employees and contractors for data breaches, ahead of third party mistakes (43%), errors in system or operation processes (34%), external hackers (33%) and malicious insiders (7%).
Keeper Security’s 2017 State of SMB Cybersecurity Report shows that despite their concerns about employees, only 43% of SMBs surveyed by Ponemon have a corporate password policy in place. Of those, two thirds (68%) say they don’t strictly enforce that policy (or are unsure whether they do or not).
Ponemon warns that SMBs face an increased risk of cyber-attack, with 61% having experienced a breach in the last 12 months compared to 55% in 2016. The quantity of stolen data in an average breach has nearly doubled to 9,350 records, from an average of 5,079 in 2016, and attacks are becoming more costly, with the average cost of disruption to business operations and damage/theft of IT assets or infrastructure both now exceeding $1,000,000.