NO less than 43 percent of the business organizations suffered from data loss in the last 12 months, Kaspersky Lab ZAO said.
“All companies today are faced with cyber attacks in some form or another,” Kaspersky Lab said in a statement. “In the last 12 months [these] businesses experienced data loss as a result of breach.”
About 20 percent of the big enterprises, or one in every five, on the other hand, encountered four and more breaches during the period, the cyber-security firm said on December 1.
Citing its 2016 global survey, Kaspersky Lab said some 49 percent of companies experienced a targeted attack and no less than 50 percent were threatened by ransomware attack.
Twenty percent of the companies had their data held hostage by ransomware attackers, the firm said.
“Another serious threat, which was exposed by the survey, is the carelessness of employees: this vector contributed to a security incident in almost half [48 percent] of the companies.”
Kaspersky Lab cited the top 3 security incidents include improper use of mobile devices (54 percent), physical loss of hardware exposing sensitive information (53 percent) and inappropriate use by personnel of information-technology (IT) resources (50 percent).
Malicious software, Trojan and viruses (57 percent), phishing and social engineering (50 percent) and crypto-malware and ransomware (50 percent) were the top three threats during the period.
“The survey results indicate the need for a different approach to tackling the growing complexity of cyber threats,” Veniamin Levtsov, Kaspersky Lab VP for Enterprise Business, was quoted in a statement as saying. “The difficulties come not necessarily from the sophistication of attacks, but the growing attack surface that requires a more diverse set of protection methods. This makes matters even more complicated for IT security departments who have more points of vulnerability to lock down.”
Using an algorithm, employees’ carelessness and data exposure due to improper sharing, is too difficult to mitigate, he added.
“This adds up to the grim reality of the modern threat landscape, where businesses have to repel the efforts of organized crime, rather than simply block the malicious software,” Levtsov said. “A truly efficient strategy, therefore, requires a combination of security technology, the analysis of external cyber-threat intelligence, constant monitoring and the application of the best practice for incident response.”
Kaspersky Lab’s 2016 global survey centered on the comparison of the perception of security threats with the reality of security incidents encountered. About 52 percent of the business organizations admitted they need to get prepared for threats.