According to the latest Business Continuity Institute (BCI) Cyber Resilience Report, which is based on a survey of 734 respondents from 69 countries, almost two-thirds (64%) of global businesses have experienced at least one cyber “disruption” in the last year, and 15% had experienced at least ten such disruptions.
A BCI spokesman confirmed to Infosecurity Magazine that “disruption” refers to “any cyber event that has a negative impact on the organisation”.
More than half the disruptions (57%) were caused by phishing and social engineering, highlighting the urgent need to improve user education.
These figures echo the findings from the Verizon 2017 Data Breach Investigations Report (DBIR). The 2017 DBIR revealed that phishing was involved in 21% of attacks in 2016.
Timing is key when it comes to dealing with threats. 67% of respondents to the BCI survey claimed that it takes their organisation over an hour to respond to such incidents, and 16% said that it can take over four hours.
On a more positive note, 87% of organisations surveyed claimed to have the necessary business continuity arrangements in place to respond to cyber incidents. The recent WannaCry and NotPetya attacks demonstrate how fragile an organisation’s infrastructure can be.
Protect your company and educate your staff
IT Governance offers a range of cyber security solutions, including for raising staff awareness. Take action against the increasing threat of targeted phishing attacks by educating your employees to be vigilant and secure. Enrol your staff on our Phishing Staff Awareness Course. Your staff are on the frontline: give them the awareness training they need.