Dramatic Rise in Cyberattacks Against Small Businesses in 2025

Surging Cyber Threats: A Wake-Up Call for SMBs

Introduction

In a startling revelation from Guardz, a leading cybersecurity firm, a new report indicates that the frequency of cyberattacks targeting small and medium-sized businesses (SMBs) has nearly doubled in the first half of 2025 compared to the same time last year. With advances in technology empowering cybercriminals, this increase underscores a significant threat landscape that SMBs must navigate.

The Landscape of Cyberattacks

As reported in the Mid-Year 2025 SMB Threat Report by Guardz, the sheer volume of cyber incidents faced by SMBs has escalated to nearly double the average weekly incidents. Once considered ‘too small to target’, SMBs are now in the line of fire for sophisticated attacks from organized crime groups.

The accessibility of Attack-as-a-Service offerings on the dark web has lowered the barriers for launching effective cyber campaigns, allowing even novice hackers to infiltrate systems. This reality obliterates the misconception that small businesses are safe from cyber threats.

Statistics That Shock

The report highlights several alarming statistics that showcase the gravity of the situation. Firstly, ransomware incidents have been rampant, with nearly 100 different ransomware types detected among SMBs. A notable trend is the combination of data theft and encryption for extortion, with a quarter of breaches characterized solely by data theft.

Moreover, credential theft emerged as a prevalent method among attackers, with over 80% of breaches involving compromised passwords. The staggering number of credential-focused attacks included 576 password spraying incidents, 437 cases of credential stuffing, and numerous more under various categories, totaling 1,890 incidents or 62% of all identity-based attacks.

Phishing incidents have also taken a toll, showing a count of 1,876 attacks, while Business Email Compromise (BEC) scams reached 1,423. The introduction of generative AI tools has made phishing messages more convincing, enabling the execution of 893 AI-enhanced attacks that utilize deepfake technology.

Cloud Exploitation on the Rise

The recent report indicates a concerning trend regarding cloud exploitation, particularly as password attacks targeting cloud accounts surged tenfold in Microsoft 365 environments, which faced 3,042 attacks, accounting for a significant 41% of these incidents. Google Workspace applications were not spared either, with 2,335 targeted attacks, primarily driven by phishing schemes and OAuth app abuse.

Industry-Specific Impact

The impact of cyberattacks varies significantly across different sectors. The financial services industry remained the hardest hit, reporting 24.4% of all incidents and a severity score of 4.8 out of 5. Following closely, the healthcare sector faced 18.9% of attacks, while manufacturing, government entities, and various professional services also grappled with substantial threats.

Conclusion

Guardz's SMB Threat Report illustrates misconceptions about cyber vulnerability. The findings reveal that effective resilience strategies are crucial for SMBs, especially as threat actors become increasingly savvy, employing advanced techniques like AI-driven impersonations and sophisticated phishing tactics. The message to all SMBs is clear: prioritize cybersecurity and seek support through Managed Service Providers (MSPs) who can provide effective solutions to thwart these escalating threats. With the ongoing evolution of cyber threats, adopting a proactive approach is not just wise but essential for survival in today's digital landscape.

About Guardz

Guardz specializes in unified cybersecurity solutions tailored for Managed Service Providers. The company focuses on enhancing security controls across various environments with an identity-centric approach, ensuring real-time responses to user risks. Its innovative framework aims to bolster operational efficiency and offers a combination of AI and human-led Managed Detection and Response (MDR) services for scalable protection.

For further insights, read the full SMB Threat Report on the Guardz blog.