Halloween may have come and gone (much to our dismay), but security breaches are here to stay–and only getting scarier. Every year, 10Fold’s cybersecurity clients conduct and publish a number of research reports examining various aspects of the cybersecurity industry and security breach trends. We have compiled the most alarming statistics from these surveys to highlight just how frightening the state of cybersecurity is, and where the industry is heading.
- The Dark Web has become darker, as the number of anonymous viewers on the Dark Web in 2021 (93%) outnumber those in 2015 (67%). (Source: Bitglass 2021 Where’s your Data Report)
- The count of healthcare breaches reached 599 in 2020, a 55.1% increase since 2019 (386) (Source: Bitglass 2021 Healthcare Breach Report)
- While 22% of organizations confirm that unmanaged devices accessing corporate resources have downloaded malware in the last 12 months, an alarming 49% are unsure or unable to disclose whether the same could be said of them. (Source: Bitglass 2021 BYOD Security Report)
- Public cloud is the most common point of entry for ransomware, with 31% of organizations stating that they have been attacked this way. (Source: Cloudian Ransomware Victims Report)
- The average ransom payment is $223,000, with 14% paying $500,000 or more. (Source: Cloudian Ransomware Victims Report)
- Enterprises spend an average of $183,000 more for other costs resulting from their attacks. (Source: Cloudian Ransomware Victims Report)
- 32% of enterprises report that they have experienced unauthorized access to cloud resources, and another 19% are unaware if unauthorized access occurred. (Source: In the Dark: Why Enterprise Blind Spots are Leaving Sensitive Enterprise Data Vulnerable to Breaches)
- 60% of enterprises report that the interval before correcting misconfiguration errors is monthly or longer. (Source: In the Dark: Why Enterprise Blind Spots are Leaving Sensitive Enterprise Data Vulnerable to Breaches)
- Only 37% of security professionals say their organization values and effectively leverages the expertise of the cybersecurity leader (Source: Security and the C-Suite: Making Security Priorities Business Priorities)
- 54% of security professionals are worried about their job security, with 63% citing insufficient budget to invest in the right technologies as a main culprit (Source: Security and the C-Suite: Making Security Priorities Business Priorities)
- While 60% of organizations have experienced a cyberattack in the last two years and spend approximately $38 million on security activities, only 7% of security leaders are reporting to the CEO (Source: Security and the C-Suite: Making Security Priorities Business Priorities)
- 25% of IT leaders that say email encryption and data loss prevention solutions are most important to overall workplace security also report that they’re not satisfied with the solution they have deployed. (Source: State of IT at Modern Workplaces)
- Overall email threats are on an upward trend throughout the first half of 2021. We quarantined over 2.9 billion email threats throughout the first half of 2021, which was a 13.5% increase over the trailing 6-month period. (Source: 2021 Mid-Year Global Threat Report)
While there’s only so much we can do to actually prevent cybercriminals from conducting malicious attacks, the good news is, reading up on these trends and staying informed can help save your organization–and your data. As employees, we can do our part by taking cybersecurity education courses, staying on the lookout for phishy emails or text messages, and always reporting them back to our organization. You never know who or what is hiding behind a suspicious link.