Small Targets, Big Payouts

By  
Gigabit Systems
August 28, 2025
20 min read
Share this post

Small Targets, Big Payouts

Ransomware isn’t “an enterprise problem” — it’s an SMB crisis. Verizon’s 2025 DBIR SMB Snapshot shows ransomware is present in 88% of SMB breaches (vs. 39% in large orgs). Exploited vulnerabilities jumped as an initial access vector to 20%, driven by attacks on edge devices and VPNs; median patch time was 32 days with only 54% fully remediated. Third-party involvement in breaches doubled to 30%, and the human element still appears in ~60% of cases.

What this means for SMBs

  • Backups + RPO/RTO: Treat ransomware as inevitable, not hypothetical. Test restores quarterly.

  • Patch edge first: Prioritize firewalls, VPNs, WAFs, and file-sharing appliances. Aim for <7-day SLAs on critical CVEs.

  • MFA hardening: Stop prompt-bombing with number-matching, device-bound passkeys, and phishing-resistant FIDO2 keys.

  • 3rd-party exposure: Vendor risk isn’t paperwork—enforce SSO, least privilege, and access termination timelines.

  • BYOD & infostealers: 46% of compromised systems with corporate logins were non-managed. Require MDM or deny access.

Quick wins we implement for clients

  • Edge patch sprint: 14-day remediation blitz on perimeter devices; continuous vuln scanning thereafter.

  • Ransomware kill-chain controls: Application allow-listing, EDR with isolation playbooks, immutable backups, and least-privilege admin.

  • Email/BEC guardrails: DMARC aligned, supplier-bank-change verification, and auto-quarantine of payment-related pretexts.

  • Vendor access hygiene: Just-in-time accounts, session recording for privileged work, and quarterly access attestations.

  • GenAI data-leak controls: Block unsanctioned AI tools; route approved use through SSO with DLP. (15% of employees accessed GenAI on corporate devices; many used non-corp identities.)

Why it matters to you (SMBs, healthcare, law firms, schools)

  • SMBs: Attackers scale demands to your size; downtime hurts revenue immediately.

  • Healthcare: Availability is patient safety—DDoS and ransomware directly impact care delivery.

  • Law firms: Client trust + privilege hinge on email integrity and vendor access hygiene.

  • Schools: Shared devices and BYOD widen the infostealer blast radius; protect staff and student data.

Our offer

Gigabit Systems will run a DBIR-aligned security tune-up: perimeter scan, backup resilience test, vendor-access review, and a 30-day hardening plan with clear, budget-fit priorities.

70% of all cyber attacks target small businesses, I can help protect yours.

#MSP #cybersecurity #managedIT #SMB #ransomware

Share this post
See some more of our most recent posts...