Kymatio Isotype
Why Kymatio
Partners
Book a demo
Book a demo
EN
Kymatio Isotype
Why Kymatio
Partners
Book a demo
This website uses cookies

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.

I acceptSettings
Cookie settings
Kymatio uses cookies to make your experience better. Check our Privacy Policy to learn more.
Strictly necessary (always active)
Cookies required to enable basic website functionality.
Accept all cookiesSave settings
Close
articles
The challenge of Cybersecurity in SMEs
Cyberattacks
Cybersecurity Glossary

The challenge of Cybersecurity in SMEs

by
Kymatio
|
January 12, 2022

On November 25 , we participated in the series of talks on “ Next Generation EU Funds : Cybersecurity in SMEs ” by Banco Sabadell. In Spain there are 40,000 cyberattacks a day, and in most cases administrations and small and medium-sized companies are the priority targets.  The most difficult challenge for cybersecurity is the

IN THIS article
Text Link
Book a demo

Participation in the “Next Generation EU Funds: Cybersecurity in SMEs” Talks by Banco Sabadell

On November 25, we participated in the series of talks on Next Generation EU Funds: Cybersecurity in SMEs organized by Banco Sabadell.

In Spain, there are 40,000 cyberattacks every day, with administrations and small to medium-sized companies being the main targets. One of the biggest challenges in cybersecurity is the constantly evolving nature of threats. As new technologies emerge, new attack methods are also developed.

Keeping pace with these changes and continuously updating protection systems is a challenge for any organization — but it is particularly difficult for SMEs, which often have limited resources to invest in security.

Internal Risk: A Persistent Challenge

Insider risk — the one involving people — remains one of the biggest unresolved issues in cybersecurity. Studies show it is present in over 90% of reported incidents. While companies are increasingly aware of this and dedicating resources to address it, most insider threat prevention programs are still not ambitious enough.

Fernando Mateus, CEO of Kymatio, pointed out that around 90% of cybersecurity incidents require employee participation, meaning SMEs must increase the digital culture of their human capital.

To improve this situation, companies should:

  • Promote a security culture among employees.
  • Provide cybersecurity awareness content.
  • Increase the still-limited use of antimalware protection.

As Mateus stated: "No company or citizen is exempt from suffering a cyberattack."

Common Failures Detected

Among the most frequent mistakes are:

  1. Ignoring the real situation regarding their greatest asset — people.
  2. Focusing only on basic alert-driven behaviors.
  3. Underestimating the importance of cultural norms in cybersecurity.

In cybersecurity, just like in daily life, different people react differently to the same situation. Therefore, treating everyone the same is not enough.

The Cost of Cyberattacks in SMEs

The average cost of a cyberattack in SMEs is €40,000. Despite this, only 20% of SMEs in Spain believe they could become a victim. As Mateus warned:

“This awareness must be promoted, so that the problem is not underestimated, because when it arrives it may be too late.”

Speakers at the Session

  • Carmen Urraca – Director of European Funds at Banco Sabadell
  • Lucia Arias – Senior Consultant at Govertis Advisory Services
  • Fernando Mateus – CEO of Kymatio
  • Javier Serrano – Director of Technological Security at Banco Sabadell

Watch the Session

If you missed the event, you can watch it here:
Session Video – Banco Sabadell Hub Empresa

More information:
The Commitment of the Next Generation EU Fund for Cybersecurity in SMEs

related articles

Explore more articles

Why an AI-Phishing Benchmark is Critical for Your 2025 Strategy
Cyberattacks
Cybersecurity Prevention
Why an AI-Phishing Benchmark is Critical for Your 2025 Strategy
by
Kymatio
|
August 19, 2025
NIS2 vs. DORA comparison — what applies to your organization
Cyberattacks
Cybersecurity Glossary
NIS2 vs. DORA comparison — what applies to your organization
by
Kymatio
|
August 1, 2025
Annual Campaign Calendar: Phishing, Smishing, Vishing and QRishing
Cyberattacks
Cybersecurity Prevention
Annual Campaign Calendar: Phishing, Smishing, Vishing and QRishing
by
Kymatio
|
July 29, 2025
ACTIVATE YOUR HUMAN FIREWALLS

Ready to uncover the real risk within your organization

Book a demo
Know the real risk
4.8 in Capterra

Join the Kymatio® newsletter and get the latest insights, research, and practical tips on cybersecurity awareness prevention straight to your inbox.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Services
HRMAssessment  & AwarenessAttack SimulationsBreach ScanDigital Wellbeing
Use cases
Public SectorFinancial SectorHealthcare SectorLarge enterprises
About us
Why KymatioKnow KymatioOur valuesSuccess Stories
Resources
BlogWebinarsWhitepapersNews
Get in touch
ContactLinkedInXFacebookYoutube
© 2025 Kymatio. All Rights reserved.
Privacy policy
·
Compliance
·
Cookies Policy
·
Legal Notice
·
AI Policy