A sense of the state of cybersecurity can help us become aware in our daily activities as some hard numbers from studies and surveys gives us a better insights into what’s happening in the cybersecurity world.
While ransomware is down, cryptomining is up. Email is still a problem. A common method of email malware infection is through phishing attacks, which are becoming increasingly targeted. The days of malware threats delivered by .exe files are almost gone but the introduction of fileless attacks are on the rise. Fileless attacks exploit software already installed on the victim’s computer rather than attempting to download large executables; for instance, they might execute in a browser plug-in, as Microsoft Office macros, or exploit vulnerabilities in server programs to inject malicious executable code, as was the case with the Equifax breach. The General Data Protection Regulation (GDPR) isn’t cheap as well!
Internet-connected industrial control systems represented the first wave of the internet of things; today, there are millions of IoT devices out there, representing a tempting attack surface that you need to protect. Read about 2018’s top 11 cybersecurity statistics at-a-glance below.
1. 90% of remote code execution attacks are associated with cryptomining.
2. 92% of malware is delivered by email.
3. 56% of IT decision makers say targeted phishing attacks are their top security threat.
4. 77% of compromised attacks in 2017 were fileless.
5. The average ransomware attack costs a company $5 million.
6. It takes organizations an average of 191 days to identify data breaches.
7. 69% of companies see compliance mandates driving spending.
8. 88% companies spent more than $1 million on preparing for the GDPR.
9. 25% of organizations have a standalone security department.
10. 54% of companies experienced an industrial control system security incident
11. 61% of organizations have experienced an IoT security incident
Global Repository for Internet Studies