Cybercrime is the no. 1 business risk – and employee behavior has a lot to do with decreasing that risk. Learn more in this report, featuring expert interviews and exclusive phishing data.
Download the reportCybercrime today is highly professionalized – exploiting vulnerabilities on a large scale, employing innovative and sophisticated tactics, and posing immense challenges to businesses, governments, and individuals alike. And the situation isn’t likely to improve in the near future:
1 in 2
organizations experienced a successful cyberattack in the past 3 years.
of organizations don’t expect the situation to ease in the next year, either.
Top 3 tactics in successful attacks
Top 3 departments targeted
Various trends, including geopolitics, AI advancements, new work models, and IT staff shortages further worsen the cyberthreat landscape. As cybercriminals quickly adapt their tactics to these changes, many organizations struggle to minimize (human) cyber risks.
3 in 4
security professionals say their organization’s cyber risk has increased due to geopolitics, AI, and remote work.
8 in 10
say their organization’s security is increasingly dependent on the security of their partners and suppliers.
In case of a successful ransomware attack, more than a third of companies paid the ransom.
Among smaller companies, almost half were forced to pay.
Security experts have realized that technology alone is not enough to protect their organizations. As employees remain susceptible to social engineering attacks and risky security practices, organizations are prioritizing building strong security cultures.
Top 3 priorities for security professionals:
9 in 10 organizations plan to maintain or increase their awareness measures in the upcoming year.
The biggest levers for greater security awareness impact, according to security professionals:
80% of security experts see social engineering and phishing as major risks to their organization
1 in 3
users click on harmful content in phishing emails, and out of these…
1 in 2
proceed to enter sensitive information.
Digital natives are
more likely to click on phishing emails than older users.