Report focuses on insider threats

Bitglass, the Next-Gen CASB company, has just released Threatbusters, its 2019 Insider Threat Report. In partnership with a leading cybersecurity community, Bitglass surveyed IT professionals about insider threats, as well as what their organisations are doing to defend against them.

  • 5 years ago Posted in
According to the report’s findings, 73 per cent of respondents believe that insider attacks have become more frequent in the past year. Additionally, 59 per cent said that their organisations experienced at least one insider attack over the last 12 months. As corporate data moves to more devices and cloud applications, failing to implement the appropriate security controls will only serve to further enable these threats.

 

“Insider attacks are harder to identify and remediate than those that originate from outside the enterprise,” said Rich Campagna, CMO of Bitglass. “This is caused by a number of factors highlighted throughout the report, including insufficient authentication, inadequate user behavior monitoring in the cloud, and a failure to properly secure personal devices. If organisations want to prevent insider attacks, they have to address these security gaps.”

 

Key Findings:

  • 41 per cent of respondents said that their organisations do not monitor for abnormal user behavior across their cloud footprints
  • Only 12 per cent of enterprises are consistently able to detect insider threats stemming from personal mobile devices, including those that are off premises or lack agents
  • 56 per cent of respondents believe it is more challenging to detect insider threats after migrating to the cloud
  • 68 per cent of organisations feel moderately to extremely vulnerable to insider threats
  • Only 50 per cent of organisations provide user trainings about insider threats, and a mere 31 per cent implement secondary authentication to defend against them
  • 56 per cent of respondents claimed that their organisations can detect insider threats within the day that they occur; 50 per cent said that they can recover from an insider attack within the same time period
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...