Security News > 2021 > October > One in three IT security managers don’t have a formal cybersecurity incident response plan
Regardless of industry, information security incidents have become more of a targeted threat for businesses, increasing in amount and efficacy, according to the 2021 Data Security Report from GetApp.
Of all the security incidents identified by over 900 surveyed employees at U.S. businesses, the three most threatening incidents were: increasingly severe ransomware attacks, more effective phishing schemes, and rampant reusing of passwords.
The report found that password reuse is strongly associated with higher incidences of security breaches.
"Data security threats are becoming more targeted to individual victims, whether that's a phishing scheme aimed at a specific person or ransomware attacks on a particular company," said Zach Capers, senior analyst at GetApp.
"Companies must redouble security training efforts and fortify their networks to protect against today's increasingly sophisticated cybercriminals."
Alarmingly, 23% of the IT security managers surveyed say their company doesn't have protocols in place to report a suspected cyberattack and 33% don't have a formal cybersecurity incident response plan.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/OGPL_CLihFY/
Related news
- A closer look at the 2023-2030 Australian Cyber Security Strategy (source)
- The ROI of Security Investments: How Cybersecurity Leaders Prove It (source)
- Australia Passes Groundbreaking Cyber Security Law to Boost Resilience (source)
- Top 5 Cyber Security Trends for 2025 (source)
- Shape the future of UK cyber security (source)
- Strengthening security posture with comprehensive cybersecurity assessments (source)
- Overlooking platform security weakens long-term cybersecurity posture (source)