Starting a small business is a big investment, and the last thing you want to think about is what kind of damage a malicious hacker can do to your company. Nevertheless, it happens far too often.

Since small businesses rarely have the same resources to invest in cybersecurity as larger companies, SMBs can be at a greater risk for cybercrime. This is why it is vital for small and medium-sized businesses to understand cyber policy to protect their most valuable assets from digital threats.

While data breaches are no laughing matter, we have developed a little game to demonstrate how important cyber policy can be for your business. Welcome to our cybersecurity edition of Would You Rather.

Would you rather fall prey to a malware or phishing scam?

Malware, as the name suggests, is a malicious software hell bent on a devouring your computer for its own purposes. But the hostile takeover doesn't stop there. Malware can turn an infected computer into a botnet which then spreads to other devices.

Removing malware can be incredibly time consuming. Steps include updating your antivirus, reverting to safe mode, manually troubleshooting and deleting files or even reformatting your hard drive and reinstalling your operating system. Yikes!

Phishing attacks, on the other hand, are designed to steal a person's login information via a fraudulent welcome page. Hackers will develop these fake pages to look almost indistinguishable from the real thing. Often sent through emails, these deceptive links entice users to hand over their information willingly. This is especially destructive because more than 50 percent of people use the same password for everything.

Recovering from a phishing scam will require you to change all your passwords immediately. Next, report the incident to your internet service provider. Check your outbox to make sure your email hasn't distributed any sketchy emails. Finally, do a security sweep to discover any malware programs that may have been downloaded without your knowledge.

Would you rather have your data leaked by an outsider or negligent employee?

Dark Reading reports that 66 percent of small business data breaches result from employee negligence. This surprising statistic reveals that not enough is being done to educate employees about cybersecurity threats.

However, hackers can often gain access to your information without exploiting known security gaps. Cybersecurity is essentially a digital arms race. New attacks are continuously being developed right alongside new solutions.

Bottom line, bad things happen. Sometimes it's your fault, other times it was just out of your control.

Would you rather be targeted by hacktivist group Anonymous or a gray hat hacker?

Hacktivism has received a lot of media attention lately. Popular examples include the 2014 Sony hack and recent DNC email leak.

Anonymous, ironically one of the most recognizable hacker communities, is best known for its distributed denial-of-service (DDOS) attacks on government, religious and corporate websites. In 2010, Anonymous knocked several financial services, including PayPal and MasterCard, offline as part of an online protest.

Gray hats are morally ambiguous hackers who often target and compromise computer systems to reveal security flaws. Unlike white hats, who are paid and permitted to reveal these weaknesses, or black hats, who steal information for their own personal gain, gray hats disrupt normal operations illegally, without permission, but also without malice. Often gray hat hackers will publish their findings online before the organization has a chance to fix the issue.

In the end, it doesn't matter who cracks your security. A disruption in business can cost your company big time.

Would you rather lose customer confidence or employee confidence?

Whenever a company is hacked, the first thing to run through our minds is, 'was my information compromised?' Following a data breach in late 2013, Target saw a major loss in customer confidence, not to mention lawsuits for damages. The moral of the story is that even after the problem has been resolved, it can be difficult to rebuild trust.

The same is true for employees. No one likes to feel unsafe at their workplace. Remember to lead by example. Employees are more likely to pay attention to an organization's security policy if they understand their information is also at risk.

Would you rather spend pennies a day to protect your business or risk hundreds of thousands of dollars from a data breach?

This should be an easy one. In 2015, 43 percent of small businesses suffered cyberattacks, the average loss per business was $180,000. Could your business survive a hit like that?

Cyber policy insurance offers peace of mind for only pennies a day. Protect your business, your customers and your reputation against all cybersecurity risks including cyberattacks, data breaches and identity theft by insuring your business with CyberPolicy.