All sessions of Transformation 2021 are now available on demand. Now look.
With phishing attacks on the rise and becoming more sophisticated, IT professionals are more sensitive than ever before to their organizations, according to a survey released this week.
Respondents to the survey said that a change in the operation of relocating to a global location was a major factor in the increasing attacks. Avanti, Salt Lake City, Utah-based IT asset monitoring, management and security platform provider, Aberdeen Strategy and Survey has more than 1,000 enterprises from the U.S., UK, France, Germany, Australia, Australia and Japan. Research.
Eighty per cent said they had seen an increase in the number of phishing attempts targeting their organizations, and 74 per cent said their organizations had been the victim of phishing attacks in the past year. About three-quarters of respondents said IT staff themselves were the target of phishing attempts and 47% of those employees fell victim to phishing, Avanti said.
They don’t quit attacks – 40% of people surveyed said they had a phishing attack last month.
In addition to the increasing exposure to phishing attacks due to the increase in remote work, staff fatigue and lack of talent have hampered IT departments, the rising security VP said. Daniel Spicer told VentureBit.
The attacks are also becoming more sophisticated, Spicer said. “This is partly due to the fact that even before the epidemic, the threatened artists targeted and collected the whole [email] Inbesx, to get a treasure trove from which to craft better, more reliable phishing emails with which to infect victims with ransomware. “
Phishing attacks detect mobile underlying
According to Aberdeen research, phishing attacks are more successful when targeting mobile endpoints rather than servers. This makes mobile data breaches more widespread and ultimately more costly. Spicer said such breaches “have an average cost of about 7 1.7 million and a long tail cost of about 90 90 million for companies.”
The bad news is that older methods of defending against phishing and ransomware are not as effective in more targeted, sophisticated attacks, Spicer said. For example, employees have received lower returns by training to better avoid phishing scams.
“We use a lot of traditional stuff against phishing, it doesn’t work well nowadays,” Spicer said. “User training is not as effective against sophisticated phishing attacks. For example, working on a link before clicking doesn’t work, because bad links are better at masking bad links. “
What’s more, people can still be helpful to train, according to the Ivent Survey, overwork IT staff have lagged behind in such educational endeavors. Ninety percent of respondents said their organizations have programs to teach employees to avoid phishing and ransomware. But only 0% said that 80% to 0% of the employees have completed the training.
Spicer also pointed to the arms race between fishermen and cybersecurity professionals, saying it is difficult for the latter to reap permanent benefits.
“Technically, we can use machine-learning models to better detect phishing. But threatening artists have the same tools, and they can get large amounts of data from inbox theft to craft phishing emails better, ”he said.
So what works against bad actors? Spicer said organizations are increasingly turning to zero-trust security structures, where users of organizational IT assets are required to constantly and frequently verify their credentials in order to access the network and applications and data.
VentureBet’s mission is to become Digital Town Square for technical decision makers to gain knowledge about transformative technology and transactions. Our site provides essential information on data technology and strategies to guide you as you lead your organizations. We invite you to become a member of our community for:
- Up-to-date information on topics of interest to you
- Our newsletters
- Gated thought-leader content and discounted access to our precious events, e.g. Transformation 2021: Learn more
- Networking features and more
Become a member