{"id":23027,"date":"2026-05-13T10:58:08","date_gmt":"2026-05-13T08:58:08","guid":{"rendered":"https:\/\/eskills.ch\/?p=23027"},"modified":"2026-05-29T16:17:23","modified_gmt":"2026-05-29T14:17:23","slug":"swiss-smes-every-hackers-favourite-target","status":"publish","type":"post","link":"https:\/\/eskills.ch\/en\/blog\/swiss-smes-every-hackers-favourite-target\/","title":{"rendered":"SWISS SMEs EVERY HACKER’S FAVOURITE TARGET"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

In 2026, cybercrime no longer primarily targets large corporations \u2014 it has shifted towards Swiss SMEs: less protected, just as profitable. This article explains why your business has become a priority target for organised cybercriminal groups, what Swiss law now requires of you in terms of data protection, and which five concrete vulnerabilities leave the door open to a cyberattack. You’ll also find a five-step action plan \u2014 realistic and actionable without a dedicated IT team \u2014 a cyber risk self-assessment checklist, an FAQ, and a glossary of essential terms. The goal: move from a reactive posture to a deliberate strategy \u2014 before the next cyber incident becomes yours.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Table des mati\u00e8res<\/strong>
<\/h4>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Cybercrime has shifted towards Swiss SMEs<\/a>
What the revDPA requires of your business \u2014 and what’s at stake<\/a>
The 5 vulnerabilities exposing SMEs to cyberattacks<\/a>
Reducing your cyber risk: 5 actionable steps without a dedicated IT team<\/a>
Checklist: assess your cyber risk exposure in 5 minutes<\/a>
Cybersecurity FAQ for Swiss SMEs<\/a>
Glossary<\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"yellow\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Cybercrime has shifted towards Swiss SMEs<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

In 2024, more than 60% of documented cyberattacks in Switzerland targeted companies with fewer than 250 employees. This is no coincidence \u2014 it reflects a structural shift in organised cybercrime, with direct consequences for SMEs.<\/p>

For years, hacking groups primarily targeted large corporations: quick results, substantial payoffs. But big players fought back \u2014 in-house SOCs, dedicated security officers, segmented network architectures. By 2026, launching a cyberattack against a systemic bank requires resources that most criminal groups simply can’t mobilise.<\/p>

SMEs now offer the best effort-to-gain ratio on the market. The Federal Office for Cybersecurity (FOCS) recorded over 30,000 cyber incident reports in 2023, rising steadily for three consecutive years. Among documented cases: law firms paralysed for weeks by an attack, fiduciaries held to ransom, industrial SMEs whose manufacturing plans were encrypted and sold to foreign competitors.<\/p>

Cyber threats targeting Swiss businesses have grown more sophisticated and more discreet. Attackers are no longer seeking visibility \u2014 they’re after quick, traceless payouts. And they’ve worked out that your systems are accessible, your teams rarely trained, and your backups rarely tested.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t

\n\t\t\t\tYou don't need to be a strategic target to fall victim to a cyberattack. You simply need to hold data that has value \u2014 customer data, banking access, intellectual property, or access to third-party systems \u2014 and be less well protected than your digital neighbours. That's the calculation criminal groups make, in seconds, scanning the internet continuously.\t\t\t<\/p>\n\t\t\t\t\t<\/blockquote>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"yellow\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

What the revDPA requires of your business \u2014 and what's at stake\n<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

The revised Federal Act on Data Protection (revDPA), in force since 1 September 2023, has fundamentally changed the obligations of Swiss SMEs when it comes to cyber risk. It no longer recommends caution \u2014 it mandates it, with penalties for non-compliance.<\/p>

Article 8 of the revDPA requires any business processing personal data to implement appropriate technical and organisational measures to ensure its security. In the event of a cyber incident that could pose a risk to the individuals concerned, notification to the Federal Data Protection and Information Commissioner (FDPIC) must be made without delay \u2014 emerging case law is converging on a 72-hour window.<\/p>

For an SME that falls victim to a cyberattack, this creates a dual exposure:<\/p>