Search

Search the blog.

How much does a cyber attack cost a small business?
A sourced breakdown of what ransomware, data breaches, downtime and BEC actually cost SMEs — and how to estimate your own exposure.
How much should a small business spend on cybersecurity?
Forget the percent-of-IT-budget rule of thumb. A practical way to size an SME security budget against actual risk, and which controls give you the most reduction per dollar.
Is cyber insurance worth it for a small business?
What cyber insurance actually covers, what it costs, the exclusions that bite at claim time, and how to decide whether your SME needs it or should self-insure.
How insurers price cyber risk, and why you should budget the same way
Expected annual loss is the number underneath every cyber insurance quote. Here is how it is built, what controls do to it, and how to use it to decide what security is worth paying for.
The cost of downtime: the cyber loss nobody puts on the invoice
Business interruption is often the largest line in a cyber incident and the one companies estimate worst. How to actually cost an hour of downtime for an SME, and why your RTO is probably fiction.
The cost of a data breach for an SME, without the per-record myth
Forensics, legal, notification, regulatory exposure: what a data breach actually costs a small business, and why the famous cost-per-record number misleads almost everyone.
Business email compromise: the boring fraud that drains SME bank accounts
BEC is the highest-frequency cyber loss most small businesses will actually face. How the fraud runs, why MFA alone won't stop it, and how little of the money you get back.
Should you pay the ransom? What ransomware actually costs an SME
The ransom is rarely the biggest line on the invoice. A practitioner's breakdown of recovery, downtime and the pay-or-don't-pay decision for small and mid-sized businesses.