There is a SaaS for everything, but at what cost, especially to SMEs?

August 2024 Editor's Choice, Information Security, Security Services & Risk Management

SaaS platforms are convenient and easy to access without installation hassles. With a stable internet connection and a monthly fee, you can eliminate the complexity of managing multiple software and hardware systems, but at what cost, especially in the SME environment where everything fails when trust is damaged in the marketplace?


Ethan Searle.

“This can be catastrophic to SME business owners’ plans to sell their thriving concern and with it secure their pension,” says Ethan Searle, Business Development Director, LanDynamix.

Forbes reports that every year, businesses rely more on software-as-a-service platforms for different tasks—from website analytics to accounting, payroll to email automation and more. Statista reveals Salesforce's annual revenue alone reached US$34 billion in its 2024 fiscal year - a record high. Subscription and support were reported as the business segments that contributed the most to the company’s continued sales boom. The SaaS market is thriving, to put it mildly.

“There’s a reason for this trend. SaaS services allow companies to focus on growing their core business offerings by using this software model to digitise and automate business processes. This, in turn, helps employees to execute their job responsibilities correctly and reliably, delivering a differentiated and consistent customer experience.”

Third-party SaaS poses substantial security risks

“Really, in today’s fast-paced and immensely competitive environment, reliance on SaaS is inevitable, but as with anything, there is a price to be paid, which may be too high for SMEs – in a country where 80% of all start-ups fail. SaaS services are closely integrated into a company’s existing technology – the more SaaS providers in your landscape, the bigger your attack surface. You must ask yourself how strong, or weak, are the SaaS providers in your chain,” says Searle.

Searle cites the CDK attack – a software provider used by thousands of car dealerships - as an example of the risks posed by SaaS-based systems. CDK was forced to shut down most of its systems after ransomware hit it. “CDK is an example of why contingency planning is crucial. The attack left 15 000 automotive dealers in operational limbo as the provider worked to restore its dealer management system.”

Searle says if, as an SME, you think that cyber criminals will not hack your business – it is too small – they will go for the big fish – you are wrong. “Cyber criminals regard SMEs as a prime soft target, knowing many in the sector fail to invest in adequate protection or simply lack resources. Taking an ostrich approach by sticking your head in the sand and hoping the danger will pass will not cut it. If you drop the trust ball with your customers, it is very difficult to get it back.”

Without access to the same skills and technologies as larger enterprises, SMEs remain vulnerable to attack and often lack the appropriate response and resilience capabilities to restore normal operations after a successful hack that has brought business operations to a standstill. These attacks aim to access your network and render your services inaccessible to customers.

These attacks often target SMEs because hackers know operating time is money to these businesses. Smaller organisations do not have the luxury of being too big to fail. Response time to such attacks and the ability to quickly get operations up and running can mean the difference between an SME's capacity to service its customers or close its doors.

The required expertise on hand

Searle highlights how a managed service from a highly skilled managed services provider (MSP) can deliver the highest protection against today’s sophisticated threats to even the smallest firms. “SMEs can look to the in-house expertise and support of an MSP. It is a route to peace of mind in the knowledge that the business you have worked to build over decades is secure in the hands of cyber technology experts who will enable you to get on with the job of running your company. Services from a top MSP routinely include managed security, backup and disaster recovery.”

“With IT operations securely managed and positioned for growth, you can take your business to the next level regardless of its current size or what industry you are operating in,” concludes Searle.

For more information, contact LanDynamix, 0861 225 553, [email protected], www.landynamix.co.za




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Your Wi-Fi router is about to start watching you
News & Events Surveillance Security Services & Risk Management
Advanced algorithms are able to analyse your Wi-Fi signals and create a representation of your movements, turning your home's Wi-Fi into a motion detection and personal identification system.

Read more...
South African fire standards in a nutshell
Fire & Safety Editor's Choice Training & Education
The importance of compliant fire detection systems and proper fire protection cannot be overstated, especially for businesses. Statistics reveal that 44% of businesses fail to reopen after a fire.

Read more...
The growing role of hybrid backup
Infrastructure Information Security
As Africa’s digital economy rapidly grows, businesses across the continent are facing the challenge of securing data in an environment characterised by evolving cyberthreats, unreliable connectivity and diverse regulatory frameworks.

Read more...
Choicejacking bypasses smartphone charging security
News & Events Information Security
Choicejacking is a new cyberthreat that bypasses smartphone charging security defences to confirm, without the victim’s input or consent, that the victim wishes to connect in data-transfer mode.

Read more...
Most wanted malware
News & Events Information Security
Check Point Software Technologies unveiled its Global Threat Index for June 2025, highlighting a surge in new and evolving threats. Eight African countries are among the most targeted as malware leaders AsyncRAT and FakeUpdates expand.

Read more...
LidarVision for substation security
Fire & Safety Government and Parastatal (Industry) Editor's Choice
EG.D supplies electricity to 2,7 million people in the southern regions of the Czech Republic, on the borders of Austria and Germany. The company operates and maintains infrastructure, including power lines and high-voltage transformer substations.

Read more...
Standards for fire detection
Fire & Safety Associations Editor's Choice
In previous articles in the series on fire standards, Nick Collins discussed SANS 10400-T and SANS 10139. In this editorial, he continues with SANS 322 – Fire Detection and Alarm Systems for Hospitals.

Read more...
Wildfires: a growing global threat
Editor's Choice Fire & Safety
Regulatory challenges and litigation related to wildfire liabilities are on the rise, necessitating robust risk management strategies and well-documented wildfire management plans. Technological innovations are enhancing detection and suppression capabilities.

Read more...
SMARTpod talks to Sophos and Phishield
SMART Security Solutions Technews Publishing Sophos Videos Information Security News & Events
SMARTpod recently spoke with Pieter Nel, Sales Director for SADC at Sophos, and Sarel Lamprecht, MD at Phishield, about ransomware and their new cyber insurance partnership.

Read more...
Corporate and academic teams can register for Kaspersky contest
Kaspersky News & Events Information Security
Kaspersky has announced the registration opening for its new Kaspersky{CTF} (Capture the Flag) competition, inviting academic and corporate teams from around the globe to compete in a battle of skill, strategy and innovation.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.