Cyber Security Awareness Month: Protecting Your Business from Digital Threats
October 2, 2023
Cyber Security Awareness Month: Protecting Your Business from Digital Threats

October is Cybersecurity Awareness Month, making it the perfect time to safeguard your business against the rising tide of cyber threats. Learn how to defend your company's digital assets and ensure long-term security.


Businesses, both large and small, are increasingly reliant on the internet for daily operations, creating attractive and potentially lucrative targets for cyber criminals.


With such heavy use of and reliance on computers and the internet by both large and small organizations, protecting these resources has become increasingly important. Learning about cyberattacks and how to prevent them can help you protect your company from security breaches.


Cyberattacks Compromise Your Company

Cyberattacks include many types of attempted or successful breaches of computer security. These threats come in different forms, including phishing, viruses, Trojans, key logging, spyware and spam. Once hackers have gained access to the computer system, they can accomplish any of several malicious goals, typically stealing information or financial assets, corrupting data or causing operational disruption or shutdown.


Both third parties and insiders can use a variety of techniques to carry out cyberattacks. These techniques range from highly sophisticated efforts to electronically circumvent network security or overwhelm websites to more traditional intelligence gathering and social engineering aimed at gaining network access.


Cyberattacks can result directly from deliberate actions of hackers, or attacks can be unintentionally facilitated by employees—for example, if they click on a malicious link. According to historical claim data analyzed by Willis Towers Watson, 90 percent of all cyber claims stemmed from some type of employee error or behavior. The high-profile Equifax, Snapchat and Chipotle data breaches were all caused by employee error or behavior.


A breach in cyber security can lead to unauthorized usage through tactics such as the following:


  • Installing spyware that allows the hacker to track Internet activity and steal information and passwords
  • Deceiving recipients of phishing emails into disclosing personal information
  • Tricking recipients of spam email into giving hackers access to the computer system
  • Installing viruses that allow hackers to steal, corrupt or delete information or even crash the entire system
  • Hijacking the company website and rerouting visitors to a fraudulent look-alike site and subsequently stealing personal information from clients or consumers


Cyberattacks may also be carried out in a manner that does not require gaining unauthorized access, such as denial-of-service (DoS) attacks on websites in which the site is overloaded by the attacker and legitimate users are then denied access.


The Vulnerable Become the Victims

The majority of cyber criminals are indiscriminate when choosing their victims. The Department of Homeland Security (DHS) asserts that cyber criminals will target vulnerable computer systems regardless of whether the systems belong to a Fortune 500 company, a small business or a home user.


Cyber criminals look for weak spots and attack there, no matter how large or small the organization. Small businesses, for instance, are becoming a more attractive target as many larger companies tighten their cyber security. According to the industry experts, the cost of the average cyberattack on a small business is increasing exponentially and shows no signs of slowing down. Nearly 60 percent of the small businesses victimized by a cyberattack close permanently within six months of the attack. Many of these businesses put off making necessary improvements to their cyber security protocols until it is too late because they fear the costs would be prohibitive.


Simple Steps to Stay Secure

With cyberattacks posing such a prominent threat to your business, it is essential to create a plan to deal with this problem. Implementing and adhering to basic preventive and safety procedures will help protect your company from cyber threats.


Following are suggestions from a Federal Communications Commission (FCC) roundtable and the DHS’s Stop.Think.Connect. program for easily implemented security procedures to help ward off cyber criminals. These suggestions include guidelines for the company as well as possible rules and procedures that can be shared with employees.


Security Tips for Your Company

Cyber security should be a company-wide effort. Consider implementing the following suggestions at your organization:


  • Install, use and regularly update anti-virus and anti-spyware software on all computers.
  • Download and install software updates for your operating systems and applications as they become available.
  • Change the manufacturer’s default passwords on all software.
  • Use a firewall for your internet connection.
  • Regularly make backup copies of important business data.
  • Control who can physically access your computers and other network components.
  • Secure any Wi-Fi networks.
  • Require individual user accounts for each employee.
  • Limit employee access to data and information, and limit authority for software installation.
  • Monitor, log and analyze all attempted and successful attacks on systems and networks.
  • Establish a mobile device policy and keep them updated with the most current software and anti-virus programs.


Security Tips for Employees

  • Use strong passwords, change them periodically and never share them with anyone. Never repeat a password across accounts.
  • Protect private information by not disclosing it unless necessary, and always verify the source if asked to input sensitive data for a website or email.
  • Don’t open suspicious links and emails; an indication that the site is safe is if the URL begins with https://.
  • Scan all external devices, such as USB flash drives, for viruses and malicious software (malware) before using the device.


Securing Your Company’s Mobile Devices

Gone are the days when contact names and phone numbers were the most sensitive pieces of information on an employee’s phone. Now a smartphone or tablet can be used to gain access to anything from emails to stored passwords to proprietary company data. Depending on how your organization uses such devices, unauthorized access to the information on a smartphone or tablet could be just as damaging as a data breach involving a more traditional computer system.


The need for proper mobile device security is no different from the need for a well-protected computer network. Untrusted app stores will continue to be a major source of mobile malware which drives traffic to these stores. This type of “malvertising” continues to grow quickly on mobile platforms.


Most importantly, stay informed about cyber security and continue to discuss internet safety with employees.


Don’t Let it Happen to Your Company

According to the DHS, 96 percent of cyber security breaches could have been avoided with simple or intermediate controls. Strengthening passwords, installing anti-virus software and not opening suspicious emails and links are the first steps toward cyber security. In addition to the listed tips, the FCC provides a tool for small businesses that can create and save a custom cyber security plan for your company, choosing from a menu of expert advice to address your specific business needs and concerns.


A data breach could cripple your small business, costing you thousands or millions of dollars in lost revenue, sales, damages and reputation. Contact SimcoHR today. We have the tools necessary to ensure you have the proper coverage to protect your company against losses from cyberattacks.

Sign up for our newsletter.

Simco’s 2025 Year in Review

January 5, 2026
As the business landscape continues to evolve, so does Simco. While 2025 may have looked like a year of quiet focus from the outside, it was anything but. Behind the scenes, our teams were strengthening the systems and structures that support our HCM / payroll, benefits, HR, retirement, and commercial insurance services, all with one goal in mind: to deliver a smoother, more dependable, and more proactive client experience. This recap offers a high-level look at what we’ve been building. If you're part of our existing client community, you’ll see how these investments enhance the service you receive every day. And for prospective partners and the broader market, consider this a window into how Simco is evolving to meet the growing expectations of the modern employer. A Stronger Foundation for the Future Much of our work throughout 2025 focused on reinforcing the operational backbone of Simco: the processes, tools, and training that enable our teams to support clients with consistency and confidence. We refined and standardized the core elements of our service model, including: Onboarding processes: creating a smoother, more predictable start for new clients by clarifying steps, responsibilities, timelines, and handoffs, ensuring everyone begins their Simco partnership with full visibility and support. Day-to-day service workflows: enhancing how requests are managed, tracked, and communicated so that clients experience faster responses, fewer delays, and a more proactive approach to problem-solving. Renewal experiences across multiple service lines: strengthening the structure behind annual renewals so they are more organized, timely, and transparent, with clearer communication and better preparation on both sides. By strengthening the infrastructure that supports every client interaction, we’re ensuring that growth never comes at the expense of quality. Communication That Sets Clear Expectations One of the most meaningful shifts this year came from improving the clarity and cadence of communication. Whether you're a current Simco client or exploring us as a potential partner, you’ll see a growing emphasis on: Setting expectations early: ensuring clients understand timelines, responsibilities, next steps, and key milestones upfront so there’s no confusion as projects or service requests move forward. Addressing issues proactively: identifying potential challenges before they surface, communicating them quickly, and offering solutions early to prevent disruptions. Creating more transparency in every interaction: providing clearer insights into processes, status updates, and decision-making so clients always know where things stand and what’s happening behind the scenes. This work helps eliminate surprises and creates a smoother, more predictable experience. Technology That Makes Service Smarter 2025 also brought strategic technology upgrades designed to improve accuracy, efficiency, and visibility. Some key milestones include: Expanded use of integrations and automations across platforms like isolved Enhanced reporting and improved data accuracy New tools to support onboarding, renewals, and Open Enrollment The build-out of our new CRM, rolling out to employees in January 2026 For our existing clients: this CRM will evolve into a client-facing portal, giving you clearer insight into service activity and easier access to support without compromising security or simplicity. This investment underscores our long-term commitment to transparency and service innovation. A More Coordinated Open Enrollment Season The Simco Benefits Team completed Open Enrollment two weeks faster than the previous year, thanks to strengthened planning, better communication, and tighter internal coordination. This improvement reflects our broader goal: to create processes that scale with growing demand while remaining predictable and client-centered. A Strategic Shift: Separating Our B2B and B2C Divisions In 2025, we completed the structural separation of our consumer-facing services, Simco Insurance & Wealth Management, from our core B2B operations. This was not simply an internal reorganization, but a strategic step toward honoring the very real differences between the needs of businesses and the needs of individuals and families. Employers require scalable systems, predictable processes, and deep operational support. Individuals, on the other hand, seek personalized guidance, protection, and long-term financial clarity. By creating space for each division to develop independently, we positioned both sides of our organization to serve their audiences with greater intention and expertise. As our service offerings have expanded, so has the complexity of the problems we solve. The separation enables our B2B team to focus fully on the demands of an employer environment, including compliance, data accuracy, HR workflows, benefits strategy, service scalability, and beyond. At the same time, the B2C division can continue developing its advisory capabilities, client education tools, and one-to-one support models. Both sides continue to share the same core values, high standards, and service philosophy, but each now has the room to innovate in ways that make the most sense for the communities they serve. We want to ensure that whether you’re engaging with Simco as an employer, or with Simco Insurance & Wealth Management as an individual or family, you’re connected to a team built specifically for your needs without losing the warmth, consistency, or integrity that define the Simco brand. Growing Without Losing What Makes Us, Us 2025 was a year of meaningful expansion for Simco through new partnerships and client relationships. But growth alone isn’t the metric we celebrate, it’s sustainable growth. Behind the scenes, we focused on building structure and scalability so that every new relationship receives the same level of attention and consistency our long-standing clients expect from us. What This Means for Those We Serve Whether you're already part of the Simco family or seeing us for the first time, here’s what our 2025 investments translate to: More consistency in how we serve Greater proactivity in identifying and addressing issues Enhanced accuracy and efficiency throughout every process Improved capacity to support continued growth and complexity A stronger, smarter foundation for the years ahead To our current clients: thank you for trusting us with your business. Everything we built this year was designed to enhance the experience you rely on. To those learning about Simco for the first time: consider this a preview of the service structure we believe all employers should expect, both today and in the future. Looking Ahead to 2026 We’re entering the new year with momentum, clarity, and a renewed commitment to continuous improvement. The work we completed in 2025 positions us to deliver an even more streamlined, transparent, and dependable experience in 2026 and beyond. Thank you for being part of our journey and for giving us the opportunity to support yours. This year-in-review report was developed by Elisha Everson, Director of Operations at Simco.

2026 Retirement Plan Contribution Limits Raised by IRS: Key Updates for 401(k) and More

November 20, 2025
The IRS recently announced the updated retirement plan contribution limits for 2026, reflecting cost-of-living adjustments and new guidance under the SECURE 2.0 Act. Whether you’re an employer managing a company plan or an employee planning for your future, these changes are important to understand so you can make the most of your retirement savings. Key Increases for 2026 Some of the most notable updates for defined contribution plans, including 401(k), 403(b), and 457(b) plans, are summarized in the chart below: 

The Employer's Guide to 2026 Minimum Wage Updates

November 5, 2025
As we move into 2026, employers across many states and localities are preparing for significant minimum wage increases. Nearly 20 states and more than 40 local jurisdictions will raise their wage thresholds effective January 1, 2026. This poses important planning, budgeting, and compliance considerations, especially for mid-sized employers like those that partner with Simco, where payroll, HR, benefits and advisory services intersect. Below we’ve summarized key state and local minimum wage updates and outlined the steps you should take now to stay ahead of the changes and mitigate risk. State-Level Minimum Wage Increases (January 1, 2026) The table below highlights selected state increases scheduled for January 1, 2026.

Have a question? Get in touch.