According to the report’s findings, 73 per cent of respondents believe that insider attacks have become more frequent in the past year. Additionally, 59 per cent said that their organisations experienced at least one insider attack over the last 12 months. As corporate data moves to more devices and cloud applications, failing to implement the appropriate security controls will only serve to further enable these threats.
“Insider attacks are harder to identify and remediate than those that originate from outside the enterprise,” said Rich Campagna, CMO of Bitglass. “This is caused by a number of factors highlighted throughout the report, including insufficient authentication, inadequate user behavior monitoring in the cloud, and a failure to properly secure personal devices. If organisations want to prevent insider attacks, they have to address these security gaps.”
Key Findings:
- 41 per cent of respondents said that their organisations do not monitor for abnormal user behavior across their cloud footprints
- Only 12 per cent of enterprises are consistently able to detect insider threats stemming from personal mobile devices, including those that are off premises or lack agents
- 56 per cent of respondents believe it is more challenging to detect insider threats after migrating to the cloud
- 68 per cent of organisations feel moderately to extremely vulnerable to insider threats
- Only 50 per cent of organisations provide user trainings about insider threats, and a mere 31 per cent implement secondary authentication to defend against them
- 56 per cent of respondents claimed that their organisations can detect insider threats within the day that they occur; 50 per cent said that they can recover from an insider attack within the same time period