Your IT, Before and After a Cyber-Attack

What Happens During A Cyber-Attack When You Have DIY IT?

IT is relative to each situation. Have you recently experienced a Cyber-Attack at your business, or have you been lucky so far? This is a complicated topic, so to simplify we will use James a local Independent Insurance Agency owner.

James writes policies for multiple insurance companies. His agency employs ten employees at two offices. James does his own IT work. 

James thinks he can handle his own IT because he’s not a big business.  He wants to do other things with the money he saves from doing his own IT, and when James has an issue he can’t solve, he calls his son’s friend to help him resolve it.

The Attack Begins

One day, a client of James’ scans in a document that requires a signature. The client emails the attached signed document to James’ office. Unknown to James’ client, they have inadvertently sent over ransomware that infected their computers over two weeks ago. When James’ office opens the email for review, the ransomware infects their computers too. Next, an employee at James’ office forwards on the signed document to the insurance company, and the ransomware is now in their computer system also.

Business Comes to A Halt

When James comes into the office the next day, he finds that he can’t open his documents because the program is now asking for a password. No one can guess the password, and everyone is locked out of their computers now. Frustrated, James goes to Google to figure out how to solve their problem, but, to his surprise, a website opens instead and displays a message that states if he pays $45,000, they will provide the password to him so he can unlock his documents. He stops and calls his son’s friend to stop by after school, so that he can look at the problem. Meanwhile, James’ business is at a standstill for hours.

But Wait We Have Back-Ups, Right?

Panicked, James grabs his external hard drive where he stores his backups and plugs it into his computer. The ransomware now infects the external hard drive. To pile on more, James just received an email from one of his insurance companies stating that his office infected them with ransomware, and they will send him a bill for the restoration service on their end.

The Professionals Arrive

James calls a local IT company, and they schedule a time to come out in a few days. Now panicked and angry, James sits with his hands tied while he waits for his son’s friend to arrive. Hours pass, prospective clients, come in and then leave, and then his son’s friend shows up, looks at the situation, and explains there is no hope. Now James must wait for the IT company to pull him out of this mess—hopefully.

Fast-forward a few days; the local IT company visits to take a look at the situation. Much to James’ surprise, after three hours of troubleshooting, their solution to recover the documents is to pay the ransom.

The True Cost

You have to ask yourself, do you want to pay nothing now and pay in a big way later? That is the cost of DIY IT when it comes to cyber-attacks. The total cost of a cyber-attack could add up to $158,675.00. See the potential cost break down below.

What is DIY IT and Its Cost?

  • No formal IT support, it's a "wing it" situation

  • Insufficient backup plans

  • $0 monthly spend on IT services

Cost of a Cyber-Attack When You Have DIY IT

  • $45,000 Ransom payment

  • $675 Emergency IT support

  • $15,000 Bill from companies seeking reimbursement from your mistake

  • $25,000 Lost company productivity

  • $8,000 Lost new business during the downtime

  • $65,000 Required certified mail sent to inform customers that their data was stolen

What Happens During a Cyber Attack When You Have a Professional IT Service?

Let’s use James as an example again, except this time; he uses a Professional IT Services provider. When the ransomware hits James’ exchange server that is managed by his IT provider, the exchange server opens the email, checks the documents, and checks all the links in a secure and isolated environment. The server flags the email because there is malicious software attached to the email. James gets an email that notifies him of the quarantined email, and he calls his IT team. They advise him not to open it and notify his client that sent him the email immediately.

Done! All tragedy adverted with no loss, cost, or pain for anyone. It remains business as usual. Sometimes paying now saves a ton later. See the cost break down below for how your business’s Professionally Managed IT saves in the long run.

What is a Professionally Managed IT Environment and Its Cost?

  • Managed IT Service always available to help with IT issues as they arise

  • Adequate and verifiable backups

  • $1,800 monthly spend on IT services

Cost of a Cyber Attack When You Have Professional IT Services

  • $0 Ransom payment

  • $0 Emergency IT support

  • $0 Bill from companies seeking reimbursement from your mistake

  • $0 Lost company productivity

  • $0 Lost new business during the downtime

  • $0 Required certified mail sent to inform customers that their data was stolen

  • Peace of Mind—Priceless

It’s hard work running a business! Not having a professional IT plan these days is like playing Russian Roulette! If your business depends on email, documents, and internet connectivity to function correctly, you need a professional IT plan. You buy insurance for your house, car, business, and boat. The same goes for your business. You need to take the proper steps to ensure your business data is secure. Get in touch if you don't know where to start and need a network assessment!

comments powered by Disqus


Jason Monroe, Associate Director, Solution Development
Jason M. Monroe

Associate Director, Solution Development

Read more