Network security specialist Infoblox shared the results of its annual global survey of security challenges, costs and solutions among IT and cybersecurity professionals. The report reveals that criminals are increasingly breaking into corporate networks through their working devices and Wi-Fi access points.
In most cases, criminals have penetrated long before an actual attack begins. For example, half of the attacks involved an Advanced Persistent Threat (ATP) or an unauthorized person with long-term access to the network undetected. It turned out that 48% of attacks started with phishing, where login information was obtained from employees, for example, via email.
Working devices and external software seem vulnerable. 29% of successful attacks were launched through an employee-managed endpoint, 27% were deployed via organization-managed endpoints, and 31% through a third-party vendor. Worldwide, Wi-Fi access points are the most used (32%).
For the time being, Dutch organizations are responding quickly to threats. For example, 64% of respondents say they can usually respond to a threat within 24 hours. This response time was found to be assisted by threat discovery tools such as a system-specific vulnerability (42%) and an external threat intelligence platform or service (39%), followed by DNS queries and responses (37%). However, it should be noted that issues such as IT staff shortages (38%), funding (27%), and remote monitoring (25%) could likely hinder the ability to detect threats in the future.
Dutch organizations are concerned about security vulnerabilities against ransomware, data breaches and cloud attacks. Nearly half (46%) are concerned about data breaches, while at the same time worrying about ransomware (41%) and attackers targeting cloud services (31%).
The full Security Status report can be found here.
Source: Infoblox
Source: Hardware Info
