Many organizations are unprepared for phishing and ransomware attacks: report
The cybersecurity specialist Trend Micro posted a new report this suggests that many U.S. organizations are not doing enough to guard against phishing, ransomware, and other modern cyber threats. The report reflects feedback from 130 cybersecurity professionals, who were each asked to rate their own company’s adherence to cybersecurity best practices.
In this regard, a good half of those surveyed said their company was doing a poor job of tackling phishing and ransomware in general, while 72% believed their company did not have a working environment to work with. secure home. Rather, they indicated that they were not prepared to deal with attacks originating from a home network.
The numbers are worrying given the high volume of attacks over the past year. Eighty-four percent of those surveyed had experienced at least one cybersecurity incident, business email compromise attacks (53%), malware injections (49%), and compromise attacks. account (49%) being the most common and effective strategies. Phishing was a popular approach regardless of the particular nature of the attack. Interviewees identified the number of phishing attempts that land in employee inboxes – and the number of people who click on them – among the most pressing security concerns organizations face today.
Currently, only 37% of respondents believe their organization has implemented 11 of the 17 best practices detailed in the study. Trend Micro has noted that phishing and ransomware attacks have increased because they have been effective. Criminals will continue to prey on leading organizations until stronger countermeasures are put in place.
“Phishing and ransomware were already critical business security risks even before the pandemic hit and, as this report shows, the advent of mass remote working has increased the pressure of these threats,” he said. said Joy Clay, vice president of Trend Micro Threat Intelligence. “Organizations need multi-layered defenses to mitigate these risks. “
Trend Micro advises businesses to adopt a risk-based security strategy and improve their authentication practices with password managers and passwordless technologies. It also encourages them to create an incident response plan and better train their employees. The report itself echoes the findings of several other organizations that have observed a increasing volume of cyber attacks during the COVID-19 pandemic.