Rising cyber threats puts 1 in 2 UAE SMEs vulnerable to attack

By Gloria Methri

Nearly half of small and medium-sized enterprises (SMEs) in the UAE have already experienced a cyberattack, underscoring the growing need for robust cyber defences amid an increasingly digital economy. Mastercard’s latest research reveals that 47% of SMEs in the UAE have faced a cyber incident, with many reporting significant fallout ranging from lost customer trust to financial closure.

In a market where malware, digital skimming, and ransomware are on the rise, the ability to safeguard digital infrastructure has become increasingly critical. The findings signal that cybersecurity is no longer a back-office consideration, but a strategic priority, central to long-term business continuity and resilience.

“SMEs are the backbone of the economy, yet their size often makes them more vulnerable to cyberattacks,” said Gina Petersen-Skyrme, SVP and Country Manager, UAE & Oman, Mastercard. “The impact can be debilitating to productivity, reputation, and financial health. By partnering with trusted cybersecurity experts and implementing effective solutions like those offered by Mastercard, SMEs can focus on what they do best – running their business.”

Digital Skimming Emerges as a Key Threat in the UAE

While malware tops the list of attacks (32%) in the UAE, digital skimming—the unauthorised capture of payment information during online transactions—stands out as a region-specific concern, ranking alongside hacking, phishing, and ransomware at 31% each. This highlights the unique threat landscape confronting UAE SMEs that are expanding digital services and online payment capabilities.

Mastercard’s study also found that 77% of UAE SMEs that experienced an attack had to spend valuable time rebuilding trust with customers and partners. At the same time, 78% of local SMEs agree that effective cybersecurity is critical to their operations, and 57% say it is a top budget priority.

Although awareness is increasing, the readiness gap persists. Four in five SMEs globally—mirrored in UAE responses—express a desire for cybersecurity solutions that do not require in-depth technical expertise. This underscores the need for plug-and-play security options and trusted partnerships that enable SMEs to focus on business growth while staying protected.

A Tipping Point for SME Cyber Strategy

With the economic significance of SMEs in the UAE and across the Middle East, cybersecurity is no longer a choice—it’s a business imperative. The increasing sophistication of attacks, the potential for regulatory impact, and the heavy cost of breaches make it urgent for small businesses to prioritise cyber resilience as part of their digital growth strategy.

Mastercard’s commitment to cybersecurity reflects a broader regional goal: enabling SMEs to participate confidently in the digital economy while safeguarding their operations, customers, and reputations.