Connect with us

Hi, what are you looking for?

HEADLINES

CEOs, vice presidents and other executives are four times more likely to be phishing victims

The report revealed that despite a stunning 97% of leaders and security professionals reporting their organization is as prepared or more prepared to defend against cybersecurity attacks than they were a year ago, one in five would not bet a chocolate bar they could prevent a damaging breach.

Ivanti, provider of the Ivanti Neurons automation platform that discovers, manages, secures and services IT assets from cloud to edge, today announced the results of its State of Security Preparedness 2023 study. Ivanti worked with cybersecurity experts and surveyed 6,500 executive leaders, cybersecurity professionals and office workers to understand the perception of today’s cybersecurity threats and to find out how companies are preparing for yet-unknown future threats.

The report revealed that despite a stunning 97% of leaders and security professionals reporting their organization is as prepared or more prepared to defend against cybersecurity attacks than they were a year ago, one in five would not bet a chocolate bar they could prevent a damaging breach.

In fact, the study finds that organizations are racing to fortify against cyber-attacks, but the industry still struggles with a reactive, checklist mentality. This is most pronounced in how security teams are prioritizing patches. While 92 per cent of security professionals reported they have a method to prioritize patches, they also indicated that all types of patches rank high – meaning none do.

“Patching is not nearly as simple as it sounds,” said Dr. Srinivas Mukkamala, Chief Product Officer at Ivanti. “Even well-staffed, well-funded IT and security teams experience prioritization challenges amidst other pressing demands. To reduce risk without increasing workload, organizations must implement a risk-based patch management solution and leverage automation to identify, prioritize and even address vulnerabilities without excess manual intervention.”

Cybersecurity insiders view phishing, ransomware and software vulnerabilities as top industry-level threats for 2023. Approximately half of respondents indicated they are “very prepared” to meet the growing threat landscape including ransomware, poor encryption and malicious employees, but expected safeguards such as deprovisioning credentials is ignored a third of a time and nearly half of those surveyed say they suspect a former employee or contractor still has active access to company systems and files.

Advertisement. Scroll to continue reading.

The report also revealed that leaders engage in more dangerous behavior and are four times more likely to be victims of phishing compared to office workers. Additionally:

  • More than 1 in 3 leaders have clicked on a phishing link
  • Nearly 1 in 4 use easy-to-remember birthdays as part of their password
  • They are much more likely to hang on to passwords for years
  • And they are 5 times more likely to share their password with people outside the company

One survey taker shared, “We’ve experienced a few advanced phishing attempts and the employees were totally unaware they were being targeted. These types of attacks have become so much more sophisticated over the last two years – even our most experienced staff are falling prey to it.”

To cope with a rapidly expanding threat landscape, organizations must move beyond a reactive, rules-based approach. To learn more about Ivanti’s State of Security Preparedness report, visit here.

Advertisement
Advertisement
Advertisement

Like Us On Facebook

You May Also Like

White Papers

This demonstrates that despite a slight improvement from last year, cybersecurity preparedness remains low as hyperconnectivity and AI introduce new complexities for security practitioners.

HEADLINES

The Fraud Bureau is a collaborative initiative that unites banks, fintechs, and financial institutions to share data on potentially deceptive applicant activity securely. This...

HEADLINES

Amplifying this risk is the increasing use of artificial intelligence (AI), which introduces new levels of realism and precision that demand heightened vigilance, especially...

HEADLINES

#BeCyberSmart is the PLDT Group’s umbrella campaign for cybersecurity awareness aimed at promoting vigilance against scams, digital hygiene and responsible online behavior, especially among...

HEADLINES

According to a new report from Kaspersky GReAT (Global Research and Analysis Team), the attackers targeted at least six organizations across the software, IT,...

White Papers

Among the primary risks are inadequate security measures and insufficient resources allocated to OT cybersecurity, challenges surrounding regulatory compliance, and the complexities of IT/OT...

HEADLINES

The campaigns show attackers are capitalizing on people’s increasing familiarity with completing multiple authentication steps online – a trend HP calls ‘click tolerance’. 

White Papers

IBM X-Force observed an 84% increase in emails delivering infostealers in 2024 compared to the prior year, a method threat actors relied heavily on...

Advertisement