When a lawyer runs through due diligence, when an insurer asks about your cybersecurity controls, or when a new enterprise client wants to know how you handle their data, they are not on a fishing expedition; they are doing their job.
The staff are helpful, and they know which buttons to click to get their jobs done. But ask them who the internet provider is, and you'll get a shrug.
Most small business owners think they're too small to be targeted, but hackers no longer pick targets. They use automated tools that scan thousands of businesses per hour, looking for easy entry points.
Microsoft has something called "Patch Tuesday." Every second Tuesday of the month, they push out updates to millions of computers worldwide.