Mimecast State of Email Security 2020 Report Reveals 60% of Organizations Expect to Suffer from an Email-borne Attack
The findings in this year’s State of Email Security report demonstrate that despite high levels of confidence in respondents’ cyber resilience strategies, there is a clear need for improvement. The large majority (77%) of respondents say they have or are actively rolling out a cyber resilience strategy, yet an astounding 60% of respondents believe it is inevitable or likely they will suffer from an email-borne attack in the coming year. Respondents cite data loss (31%), a decrease in employee productivity (31%) and business downtime (29%) due to a lack of cyber resilience preparedness.
“We’re seeing the same threats that organizations have faced for years playing out with tactics matched to world events to evade detection. The increases in remote working due to the global pandemic have only amplified the risks businesses face from these threats, making the need for effective cyber resilience essential,” said
This latest research comes at a time when organizations across the globe have been forced to adopt remote work policies for employees in response to the coronavirus pandemic. Threat actors have seized this opportunity and evolved the ways they are targeting their victims. Domain-spoofing and email-spoofing have become mainstream attack vectors, according to the report.
Nearly half of organizations (49%) surveyed report anticipating an increase in web or email spoofing and brand exploitation in the next 12 months, and it is a rising concern. In fact, 84% of respondents feel concerned about an email domain, web domain, brand exploitation, or site spoofing attack.
It is critical for organizations to look beyond their email perimeters to determine how cyber threat actors may be using and damaging their brands online.
Yesterday’s Threats Are Unwavering Year over Year
Similar to years past, impersonation attacks, phishing attempts and ransomware continue to be a major problem, according to the research. Seventy-two percent of report participants said phishing attacks remained flat or increased in the last 12 months and 74% report the same of impersonation attacks. This indicates that phishing is potentially becoming more difficult to stop or prevent due to more advanced tactics like spear-phishing.
Ransomware also continues to wreak havoc, as just over half of respondents (51%) said ransomware attacks impacted their organization, citing data loss, downtime, financial loss and loss of reputation or trust among customers.
The Need for a Strong Human Defense
The State of Email Security 2020 report also shines a light on the urgent need for a more cyber aware workforce. Encouragingly, 97% of the respondents’ organizations offer security awareness training at varying frequencies and formats. However, 60% of those surveyed reported having been hit by malicious activity spread from employee to employee, pointing to the fact that the format or frequency of these trainings could be the problem.
With frequent, consistent, engaging content that humanizes security, security awareness training is an effective way to reduce risk inside the network and organization.
Download the full State of Email Security 2020 report.
- Download the full report: State of Email Security 2020
- Read past reports on the State of Email Security Hub
Mimecast Social Media Resources
Source: Mimecast Limited