Endpoint Risks for SMBs: Key 2024-2025 Statistics

Written By Sean Pennington

Introduction
Small and medium-sized businesses (SMBs) face severe endpoint threats (laptops, phones, tablets, servers). Limited resources make breaches especially damaging, causing data loss, financial harm, and downtime. Data from 2025-2026 reports (Guardz, Total Assure, VikingCloud, Travelers, others).

Prevalence of Attacks

  • ~43-46% of SMBs experienced a cyberattack (many in the past year).

  • Attacks on small businesses rose ~47% YoY.

  • 46% of breaches hit firms <1,000 employees; 82% of ransomware targets this group.

  • Cyber remains a top concern for businesses, with SMBs most vulnerable due to low preparedness.

Key Endpoint Risks: BYOD & Shadow IT (Primarily Guardz)

  • 92% of remote workers use personal devices for work; 46% store work files on them.

  • 80-90% of successful ransomware attacks start on unmanaged devices.

  • 76% of SMBs see shadow IT as a threat; 58% faced high-impact unauthorized tools unknown to IT.

  • 71% store work passwords on personal phones; 65% bypass policies for speed.

90% of lost/stolen device incidents cause breaches.

  • Shadow IT rose 59% with remote work; it is projected 75% of employees will use/modify tech outside IT visibility by 2027.

  • 54% of pros say >20% of endpoints are unmanaged.

  • SMB employees face 350% more social engineering attacks than large enterprises.

Common Threats & Vectors

  • Endpoints originate 90% of successful attacks and 70% of breaches.

  • Endpoint malware detections +300% in Q3 2024.

  • For SMBs: Malware ~18%, phishing ~17%.

  • Ransomware hits 37% of victims <100 employees.

  • Small firms receive malicious emails at a rate of 1 in 323.

  • 95% of incidents are from human error (e.g., insecure devices).

  • AI-driven threats are on the rise; 67% of MSPs recently saw them.

Impacts & Costs

  • Recovery costs: $25K–$120K (smallest firms) to $200K–$1.2M (larger SMBs).

  • Ransomware claims avg. $187K; data breaches ~$143K; recovery ~$84K.

  • 75% of SMBs say they couldn’t survive a ransomware hit.

  • Downtime: 24-72 hours (small firms); >30 days without plans.

  • 87% hold sensitive customer data at risk.

  • 1 in 5 SMBs would close if damages hit just $10K.

Preparedness Gaps

  • 71% admit defenses are insufficient; 60% underestimate risks.

  • Only 17% of the smallest firms have cyber insurance.

  • Antivirus adoption: 58%; MFA: 46% (only 13% broadly required).

  • 1/3 of firms ≤50 employees use free/consumer-grade tools; 20% have no endpoint security.

  • 83% lack phishing awareness training.

  • 74% manage cyber independently without proper training.

Conclusion
Endpoint risks are escalating for SMBs, fueled by BYOD, shadow IT, human error, ransomware, and emerging AI threats. With high attack success, severe costs, and low preparedness, urgent action is critical. Act now: implement robust endpoint protection, require employee training, mandate MFA, secure insurance, and seek professional support to protect your business in this threat landscape.

Sean Pennington
Next

Protect Every Device, Protect Your Business