Small Business Owners, Stop Being So Naïve!

According to a recent survey conducted by The Hartford Financial Services Group Inc., 85 percent of small business owners believe a data breach is unlikely.

However, small business owners acknowledge the negative business impact of a possible data breach – nearly two-thirds of business owners (61 percent) believe a data breach violates trust and would jeopardize their relationships with customers, patients and employees. More than a third (38 percent) say they have a more negative opinion of companies that have recently experienced a breach, based on the companies’ handling of the breach.

The survey also indicated that about a third of business owners (34 percent) say they would have difficulty complying with government notification requirements (although they may be obliged to in the near future , see our previous blog post – Data breaches are so widespread – Is reporting them becoming a legislative obligation?). Also, nearly half (47 percent) acknowledge it would be impossible for a small business to completely safeguard customer, patient or employee data.

The sensitive data used in applications running these businesses is stored in databases.

Too Naive?

This is what happens when you think you are unlikely to be breached...

Safeguarding sensitive data used to be a complex task requiring complex tools and personnel, and was mainly adopted by larger enterprises.

However, the business environment these small businesses are operating in today, dictates new requirements which can be implemented even in small sized businesses. They can meet these requirements by enforcing security processes (see for example The Four Security Layers of a Web Environment) and adopting a new set of security tools designated for these environments, which require an easy to install, use and maintain software.

GreenSQL offers a FREE database security tool that protects from database security breaches, such as SQL injection or internal data thefts, and provides visibility to any suspicious database activity that may have led to a data breach.