Reasonable Cybersecurity Safeguards.
Why every business — from Main Street to the enterprise — needs them, and what happens when they're missing.
Prepared by Intelligent Automation · July 2026
Why we're presenting this.
We run IT and security for businesses every day, and we keep seeing the same story. It's almost never exotic hacking — it's a missing basic safeguard, followed by a very bad month.
Understand the risk
What cybersecurity actually is — and what an incident actually costs.
See the consequences
Real breaches, real class actions, and real businesses that closed.
Leave with a plan
The specific safeguards regulators and courts call “reasonable.”
Everything in this deck is public data — FBI reports, insurer and industry studies, court records. Yes, we sell these services. The data is the same data regulators, insurers, and plaintiffs' lawyers are reading.
What is cybersecurity?
The ongoing practice of protecting your systems, your data, your money, and your people from digital attack, damage, or unauthorized access.
Confidentiality
Only the right people can see sensitive data — customer records, payroll, contracts, card numbers.
Integrity
Data can't be silently altered — bank details on an invoice, your prices, a patient's chart.
Availability
Systems work when the business needs them — email, point of sale, scheduling, production.
It is not an IT problem. It's a business-survival function — locks, fire code, and insurance for the digital half of your company.
Why this matters right now.
Cybercrime is industrialized: ransomware groups run affiliate programs, help desks, and professional negotiators. The numbers reflect it.
Waiting is a strategy — it's just the attacker's strategy. Every one of these numbers moved against defenders who did nothing.
Sources: FBI Internet Crime Report 2024 · IBM Cost of a Data Breach Report 2025 · Verizon Data Breach Investigations Report 2025
“Reasonable safeguards” is a legal expectation.
Where the duty comes from
- FTC Act §5 — Inadequate data security is an “unfair practice.” The FTC has enforced this for two decades (FTC v. Wyndham, 2015).
- State law — New York's SHIELD Act and California Civil Code §1798.81.5 explicitly require “reasonable safeguards” for personal data.
- CCPA private lawsuits — California consumers can sue for $100–$750 each, no proof of harm required.
- Industry rules — HIPAA (health), GLBA Safeguards Rule (finance, auto dealers), PCI DSS (anyone taking cards).
What “reasonable” actually means
- Not perfection. Courts, regulators, and insurers ask a simpler question: were the recognized, affordable, proportionate controls in place?
- MFA. Patching. Tested backups. Training. Monitoring. A written response plan. That's the bar.
- If a $6-per-user control would have stopped the breach, “we hadn't gotten to it yet” is not a defense.
What an attack looks like — and what stops one.
A 2-minute briefing on what a breach actually looks like — plus a public-domain FTC series on the safeguards that stop them.
What a breach looks like — and what stops one.
A short briefing from Intelligent Automation: an ordinary Tuesday, one clicked link, and forty days of silent access — then the reasonable safeguards that would have stopped it.
Produced by Intelligent Automation, LLC · 2:00 min · download MP4 ↗
Cybersecurity basics, from the FTC.
A short primer produced by the U.S. Federal Trade Commission — the same baseline regulators and insurers reference. Public domain, free to share.
Produced by the U.S. FTC · 1:28 min · download MP4 ↗ · more FTC videos ↗
Real breaches — and the safeguard that was missing.
Equifax
2017147M people's data taken through one publicly known, unpatched server flaw. The fix had existed for months.
Up to $700M in settlements; CEO, CIO and CSO gone.
Target
201340M payment cards stolen after attackers logged in with an HVAC vendor's credentials and roamed the network.
≈$200M+ in costs; CEO and CIO resigned.
Colonial Pipeline
2021One old VPN password — no MFA — shut down the largest U.S. fuel pipeline and triggered East Coast panic buying.
$4.4M ransom paid; congressional hearings.
Change Healthcare
2024Stolen credentials on a remote-access portal without MFA. ~190M Americans affected; pharmacies disrupted for weeks.
$2B+ in response costs — and still counting.
None of this was exotic. Every one traces back to a basic, affordable safeguard that wasn't in place.
Breaches now arrive with lawyers attached.
Landmark settlements
Statutory damages do the plaintiffs' math: $100–$750 per California consumer. A breach of 50,000 records = up to $37.5M in exposure, before anyone proves a single loss.
Sources: Duane Morris Data Breach Class Action Review 2025 · public court records
The breach is the cheap part — the cascade is the killer.
Breach
Systems locked, data stolen — often via one phished password.
Downtime
Weeks of disrupted operations. Payroll, orders, invoicing stall.
Reputation
Customers quietly leave. Lost business is among the largest breach costs (IBM).
Lawsuits & fines
Class actions, AG investigations, insurer disputes, notification costs.
Closure
For some businesses, the doors never reopen.
Reputational damage is the multiplier. It turns a bad month into a lost decade — and for the unprepared, into a closing notice.
The ones that didn't survive.
KNP Logistics (“Knights of Old”)
A 158-year-old trucking firm. One guessed employee password let ransomware encrypt its data and its backups. Into administration — about 730 jobs lost.
Lincoln College
A 157-year-old college. Ransomware crippled recruitment, retention, and enrollment systems during pandemic recovery. Closed permanently.
Wood Ranch Medical
Ransomware destroyed the clinic's patient records — and the backups. With no records left to practice on, it shut down for good.
St. Margaret's Health
A 2021 ransomware attack froze billing and insurance claims for months — cited as a key factor in the hospital system's closure.
These weren't tech companies. Trucking, education, medicine — every business is a computer business now.
You're not too small to be a target — you're the easy one.
of cyberattacks target small businesses (Accenture)
of ransomware breaches Verizon analyzed involved small businesses (DBIR 2025)
of small companies fold within six months of a major attack (widely cited industry estimate)
Bots scan every business on the internet. Attackers don't choose you — their software finds you.
SMBs hold bank access, card data, and customer PII behind lighter protection.
Small vendors are the path into bigger partners — Target fell through its HVAC contractor.
Three weeks of downtime an enterprise absorbs can be terminal for a small business.
Bigger walls — but a bigger blast radius.
Record breach costs
$10.2M average U.S. breach cost — an all-time high. Detection, escalation, and regulatory fines drive it up (IBM 2025).
Lost business leads the bill
Customer churn, stalled deals, and reputational drag are among the largest components of breach cost — and last the longest.
Regulators stack up
GDPR fines reach 4% of global revenue; Marriott paid £18.4M to the UK ICO. U.S. public companies must disclose material breaches within 4 business days (SEC).
Careers end at the top
Target's CEO and CIO, and Equifax's CEO, CIO, and CSO all departed after their breaches. Boards now treat cyber as a governance duty.
At enterprise scale, the breach itself is survivable — the churn, the fines, and the leadership fallout are what shareholders remember.
Why owners and executives should care personally.
Criminal and civil exposure is real
Uber's chief security officer was criminally convicted over a breach cover-up (2022). The SEC charged SolarWinds and its CISO with fraud over security statements (2023).
Regulatory orders follow the person
The FTC's Drizly order bound the CEO personally — the security obligations follow him to future companies, not just the firm.
Insurance can walk away
Insurers have voided cyber policies where MFA was claimed but not actually deployed (Travelers v. ICS, 2022). Misstate your safeguards, lose your coverage when you need it most.
Your equity is the collateral
For an owner-operator, the company is the retirement plan. Reputational damage reprices it; a closure erases it.
What safeguards cost — vs. what a breach costs.
Reasonable safeguards
- MFA — a few dollars per user, per month
- Awareness training — a coffee budget per employee
- Managed patching, backups, and monitoring — a fixed monthly service
- Incident response plan — written once, tested yearly
One uninsured incident
- $10.2M average U.S. breach; small-business incidents routinely run six figures
- Weeks of downtime, forensics, notification, and legal costs
- Class-action exposure — $100–$750 per California record
- Premium spikes, lost coverage, lost customers
Safeguards are a utility bill; a breach is a mortgage. And afterward, everyone — regulator, insurer, judge — asks one question: was your security reasonable?
What “reasonable” looks like in practice.
MFA everywhere
Every login — especially email, banking, and remote access.
Patch on schedule
Updates applied promptly, and tracked so you can prove it.
Tested backups
3-2-1 rule with an offline copy — and restore drills, not hope.
24/7 monitoring
Endpoint detection that a human actually watches and acts on.
Train your people
Phishing drills and habits — 60% of breaches involve humans.
Least privilege
People can only reach what their job actually requires.
Vet your vendors
Security requirements in contracts, limits on their access.
Response plan
Who calls whom in hour one — in writing, rehearsed.
This maps to CISA's Cyber Essentials, the FTC's Cybersecurity for Small Business guidance, and the NIST Cybersecurity Framework — the same baseline courts, regulators, and insurers reference.
Who we are — and why we brought you this data.
Who we are
Intelligent Automation is a managed IT and cybersecurity partner. We design, run, and document exactly these safeguards — identity and access, monitoring, patching, backups, training, and incident response — so businesses can prove their security is reasonable, not just hope it is.
Why we're presenting this
Because we see the aftermath firsthand — and the businesses that hear this early are the ones that never make the news.
Every number in this deck is public: FBI, IBM, Verizon, court dockets. Verify us. An informed owner makes better decisions — whether or not they ever hire us.
Daniel Ramos · Intelligent Automation · [email protected] · (888) 711-4521
Every business gets tested.
The only choice is whether your safeguards are ready when it happens.
Baseline assessment
A fast, honest map of your current gaps — what's reasonable already, and what isn't.
Prioritized roadmap
The highest-risk fixes first, sized to your budget and your industry's rules.
Documented safeguards
Ongoing monitoring, patching, backups, training, and response — with the paper trail to prove it.
Thank you — questions welcome.