The Evolving State of Cyber-Threats
50% of respondents said that preventing cyber-attacks is the most important or a top three IT issue for their organization.
76% of respondents reported that their organization has experienced a damaging breach over the past year.
44% increased the portion of their IT budget allocated to security. Among large enterprises, the figure rises to 54%.
Respondents said that the top problems were: corruption of servers (26%), prolonged e-mail system failure (18%), revenue loss (18%), loss of employee information (14%) and other (24%).
Only 29% of the respondents said that they have established best practices to try to get the problem under control.
Overall, 20% of companies said that cyber-attacks are not a major issue. Among small firms, the figure rises to 27% but among large enterprise it drops to 8%.
New and different technologies are shifting the risks. 71% of respondents at large firms cited concerns over cloud vulnerabilities, and 59% rated BYOD as a major risk.
64% of respondents at large companies said that they are concerned about IT insiders causing incidents. Among mid-size and small firms, the respective figures are 62% and 46%.
83% of respondents at large firms indicated that password compromise is a problem. At mid-size and small firms the figures were 83% and 76%.
71% of large enterprises rated DDoS as a major concern. However, among mid-size and small companies the figure drops to 49% and 50%.
95% of the survey respondents said that they are involved in purchasing six or more security products in order to aggregate and assimilate the necessary information about attacks.
75% of the survey respondents said that key information sources are their peers and technology content Websites. About 60 percent said they look to analysts.
Changes in the way cyber-attacks are carried out are changing the way business and IT leaders deal with security. While traditional IT vendors remain important, infrastructure providers also play a role in security efforts.