2022 Comcast Business Small Business Cybersecurity Report

The security landscape remains challenging. So far in 2022, there have been a number of high-profile cyberattacks against organizations such as Nvidia, News Corp, Microsoft, Samsung, and the Red Cross. While attacks against large organizations usually grab headlines, SMBs also face cybersecurity risks and attacks.

Attackers don’t discriminate by size. Like their larger counterparts, SMBs have valuable data and financial resources that threat actors often target. Besides, SMBs far outnumber large organizations and often lack sufficient cybersecurity measures and resources to manage their risk. Furthermore, attackers seem to target SMBs more often than enterprises; a recent report estimates that users at companies with fewer than 100 employees are three times more likely to experience a cyberattack.

More than half of SMBs (58%) have suffered at least one security incident, according to the Identity Theft Resource Center’s 2021 Business Aftermath Report. Data breaches at small companies in 2020 and 2021 increased 152% compared to the two prior years, according to RiskRecon, a MasterCard company. Larger companies suffered half the number of breaches in the same time period. A survey of small businesses conducted by CNBC in April 2022 found that 38% of SMBs worried about suffering a cyberattack in the next 12 months.

This first annual Comcast Business Small Business Cybersecurity Report reviews anonymized threat data gathered from our Comcast Business SecurityEdge™ service from July 2021 to June 2022, as well as security insights from our partner Akamai. The report offers a window into threats our small and medium-sized business (SMB) customers face on a daily basis and how our service helps protect them from these cyberthreats.