By mid-2021, ransomware attacks have surged globally, costing SMBs millions in downtime, ransom payments, and recovery. As threat actors become more organised, the question isn’t if you’ll be targeted—it’s when. The best defense? Preparation, layered security, and a rapid response plan.
Attackers increasingly target smaller businesses. Why? Because SMBs often lack advanced cybersecurity tools, making them easier and faster to breach. They may also be more willing to pay ransom to avoid business disruption.
Your staff is your first line of defense. Monthly phishing simulations and bite-sized cybersecurity lessons help users spot suspicious activity and reduce click-through rates on malicious links.
Implement immutable backups that cannot be altered or deleted by ransomware. Store them offsite or in isolated cloud repositories. Test restoration regularly to ensure recovery processes actually work.
If you’re hit, every second counts. Create a clear incident response plan. Who do you call? Do you notify law enforcement? Who talks to your clients and staff? These decisions shouldn’t be made in the heat of a crisis.
Policies may cover costs like legal assistance, breach notification, ransom payment negotiation, and restoration. But they often come with prerequisites like MFA and logging—so prepare accordingly.
Instead of trusting anything inside your network, assume breach. Apply least privilege access, segment your network, and continuously verify device health and user identity. Zero Trust isn’t a product—it’s a mindset.
Eduardo Wnorowski is a Technologist and Director at Virtus Group Ltd.
With over 26 years of experience in IT and consulting, he brings deep expertise in networking, security, infrastructure, and transformation.
Eduardo helps New Zealand businesses navigate change with clarity, security, and trust.
🔗 Connect on LinkedIn