Cyberattacks are happening more often than ever—and they’re hitting everyone from global tech companies to local small businesses. In the past year, several big names have made headlines after hackers managed to steal sensitive information. If it can happen to them, it can happen to anyone. That’s why protecting your business with strong cybersecurity and having cyber insurance is more important than ever.
See Just How Widespread the Threat Really Is
Here are some major breaches from 2024-2023 that show how serious the problem has become:
1. Google Cloud Customers Hacked
In June 2024, hackers stole sensitive files from a small number of Google Cloud customers. The attackers didn’t hack Google’s main systems directly—instead, they broke into Google’s Salesforce account, which is used for customer support.
Using stolen login credentials, the hackers accessed support case files submitted by customers. These files included emails, screenshots, and technical documents—potentially containing confidential business or personal information.
Experts say the group “Scattered Spider” is behind the attack. Even though Google’s own security was strong, the breach shows how third-party tools like Salesforce can be a weak spot.
For more details, here are two articles that go deeper into this breach.
[Yahoo Finance article]
(https://finance.yahoo.com/news/google-says-hackers-stole-customers-120525867.html)
[BleepingComputer’s article]
2. Cisco User Accounts Compromised
In June 2024, Cisco revealed that hackers accessed a database containing information from Cisco.com user accounts. Fortunately, passwords and payment data were not exposed—but personal details like names, addresses, and email addresses were.
While there’s no evidence yet that this data has been misused, anyone with a Cisco.com account should be aware that this information could be used in phishing scams or unwanted contact.
For more details on what happened and what information was exposed,
[read the BleepingComputer report]
3. Omni Hotels Ransomware Attack
In March 2024, Omni Hotels was hit by a ransomware attack that forced the company to shut down its computer systems at properties across North America. This disruption affected hotel bookings, check-ins, guest services, and even employee schedules for several days.
The attack made it difficult for staff to help guests, and many travelers experienced delays and inconvenience as a result. This incident shows how a cyberattack can impact daily operations in the hospitality industry.
For more on how the attack unfolded and what it meant for guests and staff,
[read the TechCrunch article]
(https://techcrunch.com/2024/03/18/omni-hotels-ransomware-attack/).
4. AT&T Data Leak: 73 Million Customers Exposed
In March 2024, AT&T confirmed that personal data from over 73 million current and former customers was leaked online. The stolen information included names, Social Security numbers, account numbers, and contact details.
This breach puts affected customers at risk for identity theft and scams. AT&T has advised those impacted to monitor their accounts closely and consider extra security measures like credit freezes.
For a full breakdown of what was stolen and recommended next steps for customers,
[CNN article]
(https://www.cnn.com/2024/03/30/tech/att-data-breach-explained/index.html)
5. Now for what we all really need to hear, Small Businesses Get Hit Hard, Too
It’s a common misconception that only large corporations are targeted by hackers—but that couldn’t be further from the truth. In fact, the [2024 Verizon Data Breach Investigations Report] (https://www.verizon.com/business/resources/reports/dbir/) found that nearly half (43%) of all reported data breaches last year involved small businesses.
One example: In April 2024, a dental office in Minnesota was crippled by a ransomware attack, locking staff out of critical patient records and disrupting appointments for weeks. Patients were left waiting, and the business faced huge costs to restore their systems and regain trust.
[Read how it unfolded in this local news story]
(https://www.fox9.com/news/minnesota-dental-office-ransomware-attack)
You might wonder, why don’t we hear about these attacks more often? The answer is simple: small businesses rarely make national headlines. News outlets usually focus on giant corporations, leaving stories about local businesses and their customers in the shadows. But just because these companies are smaller doesn’t make their challenges, or the impact on their clients, any less important.
The bottom line: Small businesses are the backbone of our communities, and a cyberattack can be devastating. They often have fewer resources to defend themselves or recover quickly. That’s why it’s critical for every business, no matter the size, to take cybersecurity seriously and consider the extra protection cyber insurance can offer.
How Big Is the Problem?
The numbers make it clear, cybercrime is a serious and growing threat, especially for small businesses:
1. The average cost of a data breach is now $4.45 million globally, and for small businesses, the average is still a staggering $120,000 per incident, which can be devastating.
[IBM’s 2023 Cost of a Data Breach Report]
(https://www.ibm.com/reports/data-breach)
[Hiscox Cyber Readiness Report]
(https://www.hiscox.com/cyber-readiness-report)
2. 60% of small businesses shut down within six months after a major cyberattack.
[National Cyber Security Alliance article]
(https://staysafeonline.org/resources/cybersecurity-for-small-business/)
3. Ransomware attacks hit small businesses hard, over 40% of ransomware victims in 2023 were small or midsize companies.
[Datto Global State of the Channel Ransomware Report]
(https://www.datto.com/resources/ransomware-report)
4. Phishing emails remain the top threat: 1 in 5 small businesses reported being targeted by phishing attacks last year.
[Verizon DBIR 2023 article]
(https://www.verizon.com/business/resources/reports/dbir/)
5. Nearly half (43%) of all cyberattacks are aimed at small businesses, but only 14% are prepared to defend themselves.
[Accenture’s Cybercrime Study]
(https://www.accenture.com/us-en/insights/security/cost-cybercrime-study)
6. On average, it takes a small business over 200 days to realize they’ve been breached, allowing hackers plenty of time to do damage.
[IBM’s 2023 Report]
(https://www.ibm.com/reports/data-breach)
7. Cyber insurance is still rare: Only 1 in 5 small businesses (about 20%) have cyber insurance, leaving most on the hook for recovery costs and legal fees.
[AdvisorSmith Cyber Insurance Statistics article]
(https://advisorsmith.com/data/cyber-insurance-statistics/)
8. Recovery is expensive and slow: 1 in 6 small businesses that experience a breach lose customers, and 1 in 3 report a drop in revenue after an attack.
[Ponemon Institute article]
The bottom line:
Small businesses are targeted because cybercriminals know they often have fewer protections and resources. The impact of an attack can be devastating, lost customer trust, financial ruin, and even closure. That’s why it’s critical for all businesses, no matter their size, to invest in cybersecurity, train their staff, and seriously consider cyber insurance.
What Can You Do?
1. Invest in Cybersecurity
Use strong passwords, enable multi-factor authentication, keep software updated, and train your employees to spot scams.
2. Prepare for the Worst
Have a plan for what to do if your business is hacked. Practice it regularly.
3. Get Cyber Insurance
Even with the best protection, no system is perfect. Cyber insurance can help cover the costs if you’re ever attacked, from recovery to legal fees.
| Reliable Managed IT Services in Your Area | |||
| Wentzville, MO | Columbia, MO | St. Charles, MO | St. Louis, MO |
How OCCSI Can Help
OCCSI strengthens your defenses, aligns you with cyber insurance requirements, and ensures you’re protected, and covered, when it counts.
Ready to take the next step toward a more secure business?
Book a free, no-pressure consultation with us today, and let’s build a cyber-resilient future together. Contact us today
