69% of organisations in the Japan and Asia Pacific region first learned of a 2024 compromise from an external source, e.g. from a perpetrator seeking a ransom, a media publication, cybersecurity firm, or law enforcement agency.  This statistic is quoted on p44 of Mandiant’s “M-Trends 2025” report, released today and available at https://cloud.google.com/security/resources/m-trends.  Mandiant is a venerable cybersecurity company recently acquired by Google.

The key take-away for businesses is that, more likely than not, you will have zero time to come up with a plan.  You have to have a contingency plan already thought through, documented, with a printed copy sitting prominently on the shelf (in case the criminal has taken down your systems and/or files).  I.e. a business continuity plan, incident response plan, and disaster recovery plan.  As a cybersecurity consultant to Small and Medium Businesses, I can help you write these plans.

#cybersecurity #cyber #smallbusiness #SMB