VMware releases 2021 Global Security Insights Report

Issue 3 2021 Cyber Security

VMware released the findings from the fourth instalment of the Global Security Insights Report, based on an online survey of 3 542 CIOs, CTOs and CISOs in December 2020 from across the globe. The report explores the impact of cyberattacks and breaches on organisations and details how security teams are adapting to these challenges.

Accelerated digital transformation has caused security teams to face evolving threats as cybercriminals seize the opportunity to execute targeted attacks exploiting fast-tracked innovation and the anywhere workforce. Close to 80% of organisations surveyed experienced cyberattacks due to more employees working from home, highlighting the vulnerabilities in legacy security technology and postures.

“The race to adopt cloud technology since the start of the pandemic has created a once-in-a-generation chance for business leaders to rethink their approach to cybersecurity,” said Rick McElroy, principal cybersecurity strategist, VMware. “Legacy security systems are no longer sufficient. Organisations need protection that extends beyond end points to workloads to better secure data and applications. As attacker sophistication and security threats become more prevalent, we must empower defenders to detect and stop attacks, as well as implement security stacks built for a cloud-first world.”

The Global Security Insights Report provides intelligence on the cybersecurity landscape, attack and defence trends, along with the security priorities for organisations this year to maintain resilience. The key findings include:

• A lack of urgency despite surge in material breaches. 81% of respondents have suffered a breach in the last 12 months with four out of five breaches (82%) considered material. Yet, security professionals have underestimated the likelihood of a material breach. Only 56% say they fear a material breach in the next year and just over one-third (41%) have updated their security policy and approach to mitigate the risk.

• Resurgence of ransomware and remote work creates unpredictable attack surface. 76% of respondents said attack volumes had increased – with majority pointing to employees working from home as the cause – and 79% said attacks had become more sophisticated. Cloud-based attacks were the most frequently experienced attack type in the past year, whereas the leading breach causes were third-party apps (14%) and ransomware (14%).

• Cloud-first security strategies are now universal. 98% of respondents already use or plan to use a cloud-first security strategy. But the move to cloud has expanded the threat surface. Nearly two thirds (61%) agree they need to view security differently now that the attack surface has expanded. 43% of respondents said they plan to build more security into their infrastructure and apps and reduce the number of point solutions.

• Applications and workloads are top CISO concerns. Applications and workloads are viewed as the most vulnerable points on the data journey. 63% of respondents agree they need better visibility over data and apps in order to pre-empt attacks. 60% of respondents also shared that their senior leadership team feel increasingly worried about bringing new applications to market because of the growing threat and damage of cyberattacks.

• Security concerns are holding back adoption of AI. The next frontier for business innovation may be artificial intelligence, but more than half of respondents (56%) say that security concerns are holding them back from embracing AI and machine learning.

The pandemic and shift to anywhere work have undoubtedly changed the threat landscape requiring security teams to transform their cybersecurity strategies and stay one step ahead of attackers. Key focus areas for the coming year must include improving visibility into all end points and workloads, responding to the resurgence of ransomware, delivering security as a distributed service and adopting an intrinsic approach to cloud-first security.

For a clearer picture on the evolving threat landscape as well as actionable guidance and recommendations for this year and beyond, download the full report at https://www.carbonblack.com/resources/global-security-insights-report-2021-intelligence-from-the-global-cybersecurity-landscape/




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Dahua’s cybersecurity approach
CCTV Handbook 2021, Dahua Technology South Africa , Cyber Security
The world is getting smarter and everything is going to have an online ID and then connect into a vast network of IoT devices, like a laptop computer, a mobile phone, a connected thermostat and more.

Read more...
Dahua Technology’s cybersecurity approach
Issue 3 2021, Dahua Technology South Africa , CCTV, Surveillance & Remote Monitoring, Cyber Security
With a mindset that emphasises cybersecurity and all the resources it can allocate to establish, carry out and strengthen its cybersecurity approach, Dahua plans to stay positive, open, responsible and constantly improving its cybersecurity.

Read more...
SASE-enriched threat protection
Issue 3 2021 , Cyber Security
MVISION XDR automates security investigation and response processes with actionable threat insights harnessed from deeply integrated cloud data sources, with the ability to proactively stop targeted attacks.

Read more...
Active Adversary Playbook 2021
Issue 3 2021 , Cyber Security
Sophos has released its Active Adversary Playbook 2021, detailing cyber-attacker behaviours and the tools, techniques and procedures Sophos’ frontline threat hunters and incident responders saw in the wild.

Read more...
Passwords are 60, time for them to go
Issue 3 2021 , Access Control & Identity Management, Cyber Security
It has been 60 years since passwords were first used at MIT and if the number of breaches in the news are anything to go by, we are no more adept at managing our passwords than we were in 1961.

Read more...
Top 10 security misperceptions
Issue 3 2021 , Cyber Security, Security Services & Risk Management
The Sophos Rapid Response team has compiled a list of the most commonly held security misperceptions they’ve encountered in the last 12 months while neutralising and investigating cyberattacks in a wide range of organisations.

Read more...
Surveillance business models are changing
CCTV Handbook 2021, Technews Publishing, Eagle Eye Networks, Bosch Building Technologies, Dahua Technology South Africa, Genetec , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Cyber Security, Integrated Solutions, IT infrastructure
The CCTV Handbook round table highlighted the changes that are happening in the surveillance and security world in general, from cloud to costing models and of course, cybersecurity.

Read more...
Building walls is not enough
Issue 3 2021, Vox , Cyber Security
Cybersecurity: businesses are still building walls to defend against nuclear attacks.

Read more...
Awareness training is key to e-mail security
Issue 3 2021 , Cyber Security
Awareness training should be actively deployed to complement organisations’ efforts to secure their e-mail systems, because hackers are increasingly targeting people as security technologies become more effective.

Read more...
Mobile authentication is key to negating cybercrime in East Africa
Issue 3 2021 , Cyber Security
The rapid pace of digital transformation in East Africa has had a significant impact on not only how people live their lives, but also on how communication and commerce are conducted.

Read more...