SE Labs

Special Edition
Computer security testing comment and analysis from SE LABS Ⓡ

Does it matter if your company is hacked?

And why are some businesses overconfident that they are secure?

Does it matter if your company is hacked?

A true story: There was a team manager, a head of IT and a chief financial officer. I asked each if they considered their network to be secure, hacked or in some other state.

The ex-military team manager was supremely confident that the secure network was, as its optimistic name suggested, secure. The IT manager said, “I don’t know,” and the CFO said, “I don’t know, and does it matter?”

AMTSO Compliant

Email Security Services test: Enterprise and Small Business test explained

This report examines the effectiveness of five email security solutions. Microsoft Defender for Office 365 and Google Workspace Enterprise are commercial email platforms. Trellix Email Security, WithSecure Email Security and Mailcow Open Source solution are third-party ‘add-on’ services designed to provide additional security. Of the ‘add-ons’, the services from Trellix and WithSecure are commercial, while Mailcow’s is open-source.

Download the report for enterprise and small businesses now! (free – no registration)

Why do organisations think they won’t be hacked?

There are a couple of common reasons why people don’t think their organisations will be hacked. One is that their security is the best. Another is that they don’t think they are a worthy target. But all businesses are targets because they are designed to make money. And if they cannot operate then they can’t perform their main function – making money.

Hackers know this and extort money from victims by stealing their data and threatening to release it to the public, exposing victims to large regulatory fines and litigation. And, of course, there’s the embarrassment factor of looking amateur. Hackers can also encrypt data on business systems, paralysing companies until they pay up (or restore from backups).

Do hackers discriminate?

Hackers discriminate, so not everyone faces the same level of risk. But, as we can see from the groups of attackers that we emulate in this test, they search widely for targets.

Sign up to our monthly business and personal security newsletters.

APT32 has attacked a wide range of companies, although it focuses on Asian targets. Exotic Lily likes to target IT companies with ransomware. APT38 goes straight for the money, picking on banks and other financial institutions (including cryptocurrency exchanges), while APT41 engages in espionage against healthcare organisations in specific territories.

Featured podcast:

Find out more

Free security test reports

Stay in touch

Get tested

Discover how we work with large organisations and security vendors.

  • Do you run a large organisation’s security infrastructure and want an assessment?
  • Are you a security vendor that needs certification?
  • SE Labs anti-virus certification can help security vendors access Windows Early Launch Antimalware (ELAM).

Please contact us now.


SE Labs Ltd is a private, independently-owned and run testing company that assesses security products and services. The main laboratory is located in Wimbledon, South London. It has excellent local and international travel connections. The lab is open for prearranged client visits.


SE Labs Ltd
Hill Place House
55A High Street
SW19 5BA