Skip to content
Back to all News & Resources

Is Proactive Cybersecurity Worth the Cost for Small and Midsized Businesses?54 sec read

Author
Brian Gillam

Brian Gillam

Chief Operating Officer, Ancillary Business Units, Cozen O'Connor

Read Bio

Connect with LinkedIn

Date
Share
summary

Given the uncertainty of proactive measures, businesses may be tempted to incur reactive costs if a data breach occurs. Brian Gillam, COO of Cozen O’Connor’s ancillary business units and advisory board member to COSECURE, the firm’s security consulting business, writes for Today’s General Counsel on why that’s a bad call.

When it comes to cybersecurity, the most important choice business leaders face is determining which risks to address proactively, with assessments, workforce training, policy preparation, and insurance, versus which risks to address reactively, in the form of breach remediation.

Recently, our security business got a call from a mid-sized company that lost $150,000 to a classic business email compromise. The hacker sent a phishing message to an AP clerk, who then gave up his login credentials. The hacker accessed the clerk’s emails and his OneDrive account. Combing through the data, the hacker identified a legitimate vendor receiving monthly payments of $50,000, and then posed as the vendor requesting payment. The company didn’t realize what was happening until three months later.

Could the attack have been avoided? Easily. But, the company reasoned that cyber prevention was just too expensive and they were small enough to escape the attention of hackers. 

Read more on Today’s General Counsel.

More News & Resources

HHS Proposes Changes to HIPAA Security Rule to Strengthen Cybersecurity in Healthcare9 min read

On January 6, 2025, the U.S. Department of Health and Human Services (HHS) published a Notice of Proposed Rulemaking (NPRM) outlining significant updates to the HIPAA Security Rule. These changes aim to enhance cybersecurity, improve patient data protection, ...

Read More

OSHA Delays Notice of Prosed Rulemaking for Healthcare Workplace Violence Prevention3 min read

Since 2016 when  US Occupational Health and Safety Administration (OSHA) is in the process of developing a standard for workplace violence prevention in the healthcare and social services sector. In 2021 Congress passed The Workplace Violence Prevention ...

Read More

Sign up for our newsletter

Sign Up

COSECURE, an ancillary business of Cozen O’Connor, has been on the leading edge of security and risk management for over 20 years and is actively protecting global Fortune 100 companies, law and technology firms, and high net worth individuals.

© Copyright COSECURE 2025

cozen.com

Privacy Policy 

Disclaimer 

Attorney Advertising

About Us

Capabilities

Industries

News & Resources

Contact Us

EMAIL US
info@COSECURE.com

OUR HEADQUARTERS
One Liberty Place

1650 Market Street Suite 2100

Philadelphia PA 19103

Linkedin

Privacy Policy 

Disclaimer 

Attorney Advertising

© Copyright COSECURE 2024

cozen.com