Security

Research: 94% of organizations have suffered insider data breaches

Human error is the top cause of serious breaches but malicious attacks are IT leaders’ biggest concern.

London, UK – 13th July 2021 – Egress’ Insider Data Breach Survey 2021 has revealed that an overwhelming 94% of organizations have experienced insider data breaches in the last year. Human error was the top cause of serious incidents, according to 84% of IT leaders surveyed. However, IT leaders are more concerned about malicious insiders, with 28% indicating that intentionally malicious behavior is their biggest fear. Despite causing the most incidents, human error came bottom of the list, with just over one-fifth (21%) saying that it’s their biggest concern.

Research: Half of businesses now have a policy on whether to pay out on ransomware

New research by Databarracks has revealed 54% of businesses now have a defined policy in place to deal with ransomware attacks – whether this means paying a ransom, relying on insurance policies or refusing to pay at all.

The findings are from Databarracks’ 2021 Data Health Check, launching today. Running since 2008, the annual report surveys over 400 IT decision-makers in the UK on critical issues relating to cybersecurity, IT resilience, cloud and remote working.

When asked if their organization had a policy for paying out on ransomware attacks:

Insider breaches the top cause of cyber incidents according to latest ICO data

London, UK – 7th July 2021 – Insider data breaches were the top cause of data and cyber security incidents reported to the ICO in the first quarter of 2021, according to the ICO. 57% of reported incidents were caused by insiders, with over 1,000 incidents reported in the first three months of 2021. Misdirected email was behind most of the incidents, with over 400 reports made to the ICO. Phishing was the second-biggest named cause, with over 200 incidents caused by employees falling for malicious emails.

For the fourth quarter running, healthcare was the hardest hit, with over 420 reported incidents in just three months, while financial services was the industry targeted with the most phishing attacks.

New WatchGuard research reveals traditional anti-malware solutions miss nearly 75% of threats

24 June 2021 – WatchGuard® Technologies’ latest Internet Security Report shows that 74% of threats detected last quarter were zero day malware, capable of circumventing conventional signature-based antivirus solutions at the time of the malware release. The report also found that network attacks surged, with a 21% increase compared to the previous quarter and the highest volume since early 2018. With WatchGuard appliances detecting more than 4 million network attacks, corporate servers and assets on site are still high-value targets for attackers despite the shift to remote and hybrid work.

1 in 3 employees has picked up bad cybersecurity habits since working remotely, reveals news data

SAN FRANCISCO - 15 JUNE 2021: A new report from human layer security company Tessian reveals that most IT leaders (56%) believe their employees have picked up bad cybersecurity behaviors since working from home. As organizations make plans for the post-pandemic hybrid workforce, Tessian’s Back to Work Security Behaviors report reveals how security behaviors have shifted during the past year, the challenges as organizations transition to a hybrid work model, and why a fundamental shift in security priorities is required.

Cutting Cybersecurity Corners at Home

VMware Releases 2021 Global Security Insights Report Detailing the Surge in Cyberattacks Targeting the Anywhere Workforce

LONDON, UK – Security Connect 2021 (3rd June 2021) – Today at Security Connect 2021, VMware, Inc. (NYSE: VMW) released the findings from the fourth instalment of the Global Security Insights Report, based on an online survey of 3,542 CIOs, CTOs and CISOs in December 2020 from across the globe. The report explores the impact of cyberattacks and breaches on organizations and details how security teams are adapting to these challenges.

TCG releases first security verification guide for enterprise systems with NIST

Beaverton, OR, USA, May 19, 2021 – IT administrators and manufacturers can now secure enterprise computing, with the latest specification from the Trusted Computing Group (TCG). This new guide verifies the trustworthiness of each end point, by allowing the integrity of devices and networks within enterprise systems to be measured for the first time. This follows a 430% increase in supply chain attacks in 2020, according to Sonatype.

Research: An alarming 85% of organizations using Microsoft 365 have suffered email data breaches

LONDON, UK – 11th May 2021– Egress’ Outbound Email: Microsoft 365’s Security Blind Spot report has revealed that 85% of organizations using Microsoft 365 have suffered email data breaches in the last 12 months.

Remote working has exacerbated the risk of an email data breach even more for Microsoft users, with 67% of IT leaders reporting an increase in data breaches due to working from home, versus just 32% of IT leaders whose organizations aren’t using Microsoft 365. Looking to the future, 76% of IT leaders report that remote and hybrid working will make it harder to prevent email data loss from Microsoft 365, compared to 40% of those not using it.

Illegally obtained digital identities traded on Genesis Market increase by 250% in two years

Manchester, UK – 22nd April 2021 – Netacea, the bot detection and mitigation specialist, has today published new research into the Genesis Market, the world’s largest invite-only deep web marketplace that trades digital fingerprints and enables buyers to impersonate a victim online. Netacea’s report ‘Buying Bad Bots Wholesale: The Genesis Market’ reveals that since April 2019, the number of stolen digital identities available to purchase on the marketplace has increased from 100,000 to over 350,000 today, with more than 18,000 being added each month.

Fileless Malware Attacks Surge by 900% and Cryptominers Make a Comeback, While Ransomware Attacks Decline

30 March 2021 – WatchGuard® Technologies’ latest Internet Security Report reveals that fileless malware and cryptominer attack rates grew by nearly 900% and 25% respectively, while unique ransomware payloads plummeted by 48% in 2020 compared to 2019. The WatchGuard Threat Lab also found that Q4 2020 brought a 41% increase in encrypted malware detections over the previous quarter and network attacks hit their highest levels since 2018. The report includes new insights based on endpoint threat intelligence following WatchGuard’s acquisition of Panda Security in June 2020.