Cyber-security executives and business decision makers question whether phishing emails or ransomware attacks are the most potent threats faced, but are businesses equipped to implement all-round risk mitigation strategies?
While cyber security executives and business decision makers are grappling with the question of whether phishing emails or ransomware attacks are the most potent threats faced by their organisations, the real question is whether businesses are equipped to implement all-round risk mitigation strategies to prevent or to respond to all kinds of emerging threats.
Earlier this week, a survey of 600 business decision makers across the UK, US, Germany, and Australia by security firm Clearswift revealed how such decision-makers viewed and ranked various forms of cyber-threats that could impact their businesses. A majority (59 percent) of such decision makers said that they viewed phishing emails as the biggest cyber- threat to their businesses, thereby signifying the scale of impact a single malicious email can have on a business.
Even though such decision makers did not comment about the threat posed by ransomware attacks or DDoS attacks, a third of them listed the lax attitude of their employees as the biggest threat, while another 31 percent of them highlighting USBs as a major threat as such devices can easily be infected with malicious code.
In contrast, a survey of 250 information security experts (CIOs, CISOs and CSOs) by Bitdefender revealed that 44 percent of them viewed the cyber-behaviour of their C-Suite colleagues as the biggest threat to their businesses, with 75 percent of them sure of the fact that those representing their management were the most likely to flaunt data security rules.
While 38 percent of information security experts in this second survey ranked ransomware attacks and DDoS attacks as the biggest threats faced by their organisations, only 11 percent of them considered phishing attacks as the biggest threat. When asked to rank departments that were most likely to suffer a data breach, 23 percent of such experts chose Finance, 17 percent chose Sales, and another 14 percent chose HR, thereby flagging three departments that handle large amounts of sensitive information.