SMEs tend to believe that hackers are much more interested in large companies. However, this is a wrong assumption. In most cases, hackers use tools which autonomically search the internet for weak points in the defense systems of organizations’ IT systems – without making a distinction based on the size of the organization – and try to work their way in. The fact that smaller organizations’ security systems are often less sophisticated than those of large companies, makes those smaller organizations more vulnerable.