Even with the shifting menace panorama, organizations view malware, phishing, and knowledge breaches as their largest threats.
Virtually a 3rd of respondents in Fastly’s Struggle Hearth with Hearth survey take into account knowledge breaches and knowledge loss as the most important cybersecurity menace to their group over the following 12 months. Malware (29%) and phishing (26%) spherical out the highest three. What’s notable is the change in focus from 2021, when 31% of respondents named malware as their largest menace, adopted by distributed denial of service assaults (26%) and assaults concentrating on recognized vulnerabilities (25%).
Whereas assaults exploiting vulnerabilities or misconfigured companies had been perceived as the most important threats in 2021, malware, phishing, and ransomware gave the impression to be greater points in 2022. Fastly famous the truth that the 2022 Menace Panorama report from ENISA additionally recognized ransomware as the highest menace companies had been involved about, whereas malware was the second mostly recognized menace.
Fastly’s knowledge confirmed that simply 14% had been involved about DDoS assaults in 2022 — which is a surprisingly steep decline, particularly contemplating the stratospheric improve in DDoS assaults in 2022. There have been 60% extra DDoS assaults within the first six months of 2022 than within the entirety of 2021, in response to the report. One motive for the disconnect could also be as a result of content material supply networks (CDNs) are capable of take up the overwhelming majority of DDoS assaults, liberating up IT to give attention to different areas, Sean Leach, Fastly’s chief product architect, stated within the report.
Whereas assaults in opposition to distant employees didn’t present up on the listing of threats organizations are fearful about, Fastly’s knowledge means that organizations are nonetheless very involved about their means to guard distant employees. Practically half, or 46%, predicted that assaults on distant employees will drive cybersecurity threats over the following 12 months.
“Distant employees create no extra vulnerability on their very own,” Leach stated, noting that issues about securing distant employees have extra to do with adoption of latest applied sciences and studying how you can use safety controls successfully.
To bolster their defenses, 51% of worldwide companies are actively investing in distant worker safety, with an extra 38% planning on investing in it throughout the subsequent two years, Fastly stated in its report.
Total, IT leaders are growing their cybersecurity investments to usher in extra instruments and applied sciences to defend in opposition to threats — 73% stated they had been growing cybersecurity funding. Sadly, extra instruments do not essentially imply higher safety, as a few of these instruments might not simply combine with the present safety stack or with one another, Leach stated.
“As a substitute of shopping for any variety of pointless instruments, companies with profitable safety methods usually work with fewer applied sciences which work intently collectively and are deeply built-in with each other,” Leach stated.
