Phishing remains the main cyber attack used on organizations

Researchers found that the majority of cyber attacks – 75% – came from outsiders, while 25% were due to insiders.
Hackers are the biggest cyber threat; researchers found that 39% of the analyzed companies are affected by cybercrimes caused by an outsider, which are the most costly for their business environment.

These are the most common outsider attack vectors that can lead to cybersecurity breaches:
– Phishing – 53%
– Malware – 50%
– Spyware – 45%

Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;

However, the most common problem employee isn’t the one who hits the company on purpose with criminal intent. Like, the employee who allegedly stole government spyware in the past.

Researchers say that the biggest problem when it comes to an insider threat is the employees who fall for phishing or other hackers scams.
These are the most common insider threats:
– Innocent employees getting duped – 42%
– Careless employees blending work and personal usage – 26%

Hackers are becoming more and more cunning when it comes to Business Email Compromise (BEC). They are now exquisitely using cyber attacks that trick employees into thinking they’re dealing with suppliers, partners, or their own bosses. For example, the Penguin Random House and other publishers were recent victims.

Employees that got tricked by this type of attack have led to these serious breaches:
– Compromised customer records – 61%
– Loss of trade secrets or intellectual property – 56%
– Theft of personally identifiable information (PII) – 49%

Researchers are saying that many of these breaches can be avoided if employees are properly educated.

Nowadays most employees are receiving some security training, but not more than once a year. Here’s the training frequency around the companies:
– Once a year – 29%
– Twice a year – 15%
– Quarterly – 15%
– Monthly – 7%

The researcher’s conclusion: C-level executives are the ones who most need the training to protect themselves from attacks; train up the employees, particularly the new ones, and train them often.

Keep in mind that our modern society is dependent on computers, mobile devices, and the use of the internet always stay safe and secured.
We would continue to monitor the cybersecurity world. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.