Forty-five per cent of small businesses have experienced a random cyberattack in the past year, and 27 per cent experienced a targeted attack, according to the findings of a new survey by the Canadian Federation of Independent Business (CFIB).
In addition, the survey found that 11 per cent of businesses had experienced a “whaling” attempt in the past year. This is defined as a phishing attack targeting or impersonating a CEO or business leader.
Businesses in the professional services reported (57 per cent random, 28 per cent targeted) and wholesale (58 per cent random, 38 per cent targeted) sectors were most likely to report experiencing cyberattacks in the past year, says the CFIB.
Despite the frequency of attacks, the survey found that only 11 per cent of businesses had offered mandatory cybersecurity training to their employees in the past year, and 8 per cent had provided optional training.
"Cyberattacks are a growing threat to small businesses but enhancing cybersecurity can be intimidating and accessing cybersecurity support can be costly for small businesses," said Mandy D'Autremont, Vice-President of Marketing Partnerships at CFIB. Because of this, the CFIB is launching the CFIB Cybersecurity Academy, an online education program to train business owners and their employees on how to improve cybersecurity in their business.
The training was developed by CFIB in partnership with Mastercard and their cybersecurity specialists. Topics covered include preventing ransomware and cyberattacks, recognizing fraud, and identifying and preventing social engineering.
These lessons will be free to CFIB members. The organization is also opening up access to non-members with a free temporary membership to complete the Cybersecurity Academy courses.
