Myth #1: We really don’t have any confidential information to protect.
You might think an old-line manufacturing company has little or no exposure to a network security event. However, they more than likely hold data on their current employees, and probably have information on employee prospects as well as recently-terminated employees. They also likely hold the design plans of key customers, acquisition targets and partners. Virtually any business has billing records of many customers on hand, which often contains sensitive data.
Myth #2: We use a third-party vendor so we do not have the exposure.
Using a third-party vendor may actually present additional exposure to your business. As your systems link with other systems and connect with other companies’ data, you take on the added exposure of potentially corrupting or breaching the data of multiple businesses due to your processes and your people.
It’s also important to fully understand the indemnification agreements and hold-harmless contractual wording in place with the third-party vendors, and to verify that they have adequate resources, including insurance, to back their indemnification obligations to your business.
Myth #3: Our IT Department assures us that we do not have any exposure.
Consider the recent Sony case. This is an example of a large, sophisticated company with the latest and greatest technology protection that was hacked with apparent ease. Businesses with the best controls still have data breaches. You can’t engineer the people-factor out completely: Laptops get stolen, and PDAs get left in airports.
There have been reports of the FBI, the State Department and multiple Fortune 500 companies being hacked despite sophisticated control measures and teams of people working to protect their systems. An IT manager who says their systems are impenetrable is either extremely naive or horribly overconfident.
Myth #4: Hackers only attack large companies.
A new 2016-2017 Radware’s security report found that 98 percent of organizations survived the cyber-attack in 2016. Thirty-one percent of these attacks were committed against small and medium-sized businesses with less than 250 employees. Visa Inc. estimates about 95% of the credit-card data breaches it discovers are on its smallest business customers.
For more information, please contact your local Marsh & McLennan Agency representative or visit: marshmma.com/cyberliability
You May Also Be Interested In
- Event
03.18.2020
Seminar | A 360 Degree View of Workers' Comp Litigation
- Event
10.15.2019
Webinar | New Cyber Privacy Regulations & Risks Affecting U.S. Businesses
- Blog
10.14.2019
Tornado Preparation and Recovery Tips for Ohio Businesses
- Blog
10.09.2019
FDA to Begin Food Defense Plan Inspections on Food Facilities in 2020
- Blog
10.07.2019
The State of Cyber Security
- Blog
10.03.2019
INSIGHTS Newsletter
- Blog
09.03.2019
12 Best Practices to Secure and Protect Passwords
- Blog
08.02.2019
Podcast | Choosing Your Broker
- Blog
03.28.2019
Five Trends in the Business Aviation Industry
- Blog
03.11.2019
Protect Your Business from these 5 Cybersecurity Risks
- Blog
02.25.2019
Top Challenges Facing the Banking and Financial Services Industry
- Blog
02.19.2019
How Technology is Impacting the Wholesale Distribution Industry
- Blog
02.08.2019
Businesses Required to Obtain a Spotted Lanternfly Permit
- Blog
01.16.2019
How Technology is Reshaping the Agriculture Industry
- Blog
01.11.2019
Is Ocean Wave Power the Next Big Thing in Renewable Energy?
- Blog
01.08.2019
Five Technologies Impacting Safety and Productivity in the Construction Industry
- Blog
01.03.2019
Four New Advances that are Revolutionizing the Hospitality Industry
- News
12.21.2018
Social Engineering Fraud
- Blog
12.19.2018
Does Your Company Know What To Do After a Cyber-Attack?
- Blog
12.17.2018
Brain Injuries in the Workplace
- Blog
12.14.2018
New Algorithms to Spot Fake Pictures for Insurance Claim Verification
- Blog
12.10.2018
Digital Transformation Unlocks New Opportunities for Financial Services Industry
- Blog
11.26.2018
Five Critical Risks Impacting Public Sector Organizations Today
- Event
10.25.2018
Framework of a Cyber Breach
- Blog
10.19.2018
IoT-connected Devices Are Increasing Cyber Risk Exposure
- Event
10.18.2018
Workers Compensation Red Flags
- Blog
10.17.2018
What's Keeping CEOs Awake These Nights?
- Blog
09.04.2018
15 Best Practices to Protect Your Website From Malware & Cyber-Hacking
- Blog
08.28.2018
Why Manufacturing Companies are Now More Susceptible to Data Breaches
- Blog
07.24.2018
Mid-Year Economic, Insurance and Risk Management Marketplace Update
- Blog
07.05.2018
Construction Industry Employee Engagement
- Blog
06.28.2018
Subcontractors without Workers’ Compensation Coverage May Cost You
- Blog
06.19.2018
2018 Cyber & Data Security Risk Survey Report
- Blog
05.11.2018
Drones: The New Highway in the Sky
- Blog
05.10.2018
Identity Protection: The Right Voluntary Employee Benefit
- Blog
05.08.2018
GDPR is Coming. Are You Ready?
- Blog
05.08.2018
OSHA Compliance Alert
- Blog
05.07.2018
Consider the Fair Labor Standard Act for Internships
- Blog
04.30.2018
Plan Sponsor Quarterly Calendar
- Blog
04.25.2018
Hours of Service Rules for Commercial Drivers
- Blog
04.24.2018
Severe Weather: Why it Matters
- Blog
04.17.2018
Understanding Your Investment Policy Statement
- Blog
04.17.2018
Preparing for a Product Recall
- Blog
04.05.2018
Safety Resources - Excavation Safety Stand Down
- Blog
04.04.2018
Electronic Logging Devices - A Hacker's New Window?
- Blog
04.03.2018
Aviation CGL Coverage and Contracts
- Blog
03.21.2018
Recap of MMA Seminar: Employment Law 2018
- Blog
03.13.2018
Understanding Your Aviation Policy: There's More to Consider Than Price
- Blog
02.01.2018
Construction Contracts
- Blog
01.31.2018
Texting While Driving
- Blog
09.25.2017
Got Hail?
- Blog
09.25.2017
Catastrophic Disasters
- Blog
09.15.2017
Cyber Breach - Equifax
- Blog
09.05.2017
Employee Retention
- Blog
02.01.2017
A Gap In Coverage
- Blog
10.17.2016
Drones expand business' horizons - and their liability