Five most startling statistics from the Cyberthreat Defense Report

News by Terry Ray

Cyberthreat Defense Report notes AI and machine learning making a difference now; Web application firewalls making and impact, and security applications with smarter software.

The CyberEdge Group 2019 sixth annual Cyberthreat Defense Report surveyed 1,200 international IT security decision makers and practitioners from 19 different industries to provide a fascinating look at the industry’s main concerns.

Terry Ray, SVP and Imperva Fellow has reviewed the report to pull out his list of its most dramatic findings, which SC Media UK reproduces here, edited:

1. "No organisation is immune from attack. 2018 was the first in which the percentage of organisations hit by one or more successful cyber-attacks actually fell year-over-year. That decrease was short-lived. The percentage of organisations breached in the past year increased again year-over-year to 78 percent in the 2019 survey. Worse, 32 percent of businesses reported being breached 6+ times in the last 12 months, up from 27percent in the past year. That’s a nearly 20 percent increase — HUGE in my mind.

2."The two most-wanted security technologies revolve around smarter software. Security teams are swamped with too much data, not enough intelligence; too many meaningless events, not enough ability to detect the true threats. No wonder that advanced security analytics and threat intelligence services are at the top the list of the most-desired technologies by security professionals.

3. "Web Application Firewalls (WAFs) rule. For the second year in a row, respondents to the CyberEdge survey said WAFs (63 percent) were their most widely-deployed application and data security technology.

4. "The two security processes businesses struggle with most. They are 1) secure application development and testing, and 2) detection of insider attacks. Because as powerful as WAFs are, they are best at protecting the metaphorical walls of your business from outside attack, but not as optimised for either emerging threats or attacks involving trusted employees who have been compromised or are malicious. Data Security and RASP (Runtime Application Self-Protection) solutions can fill in these security gaps.

5. "Machine learning and AI are making an impact TODAY. Who says AI is a coming technology? Four out of five respondents said they believe machine learning and AI are making a difference in the battle to detect cyber-threats. How? By analysing and automating the processing of millions of security events, filtering out meaningless ones, and distilling the rest into several actionable insights that security pros can quickly act on."

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews