In today’s fast-changing digitally led economy, most businesses are currently going through some form of digital transformation either to improve their offering or to streamline their operations, with many already seeing the benefits of financial...
Business leaders feel a lack of confidence in their ability to protect their businesses and a sense of inevitability and resignation to an attack, with many believing hackers will always outwit preventative software.
There is a gap in senior management’s engagement and prioritisation of cybersecurity that needs to be addressed, with lack of discussion around the risks at board level and ambiguity over who is responsible for cybersecurity in the organisation.
The GDPR is identified as the key driver to businesses taking the first steps in cybersecurity and the legislation is justifiably seen as a champion in this space, but there have been some unintended consequences.
Correctly, most businesses see human error as the core area of vulnerability with targeted attacks on staff via phishing, whaling and ransomware attacks being the most sensitive touchpoint, so what can be done to educate employees?
Having a culture which encourages staff to report data breaches is key to ensuring that the real scale of the threat can be determined, and so that root cause analysis can be undertaken to help prevent future attacks.
Almost half (46%) of successful attacks target under-trained employees
75% of attacks never become public knowledge despite GDPR breach notification requirements
62% believe hackers are more sophisticated than security software developers