Of those reported, software vulnerabilities accounted for nearly half of every breach, highlighting a need for better patch management strategies, password managers and cybersecurity training. We already know that cybersecurity is a top concern for businesses across the US, but with phishing attacks on the rise and high-profile attacks seeing no end, there’s a lot we can learn to keep our businesses safe. Here’s everything you need to know.
70% of incident response cases were ransomware and business email compromise77% were caused by phishing, software vulnerabilities and poor password security (brute-force attack)Known software vulnerabilities accounted for nearly half of all cases reported50% of organizations targeted lacked multifactor authentication on core internet facing systems such as corporate webmail, remote access solutions and secure VPNsPoor patch management procedures contributed to 28% of cases
Attackers, it said, are particularly “opportunistic” and will scan the internet in search of systems where they might leverage specific vulnerabilities, making businesses with weaker internet facing defenses all the more vulnerable. As the Incident Report suggests, securing VPNs, multi-factor authentication (MFA) and password managers are some of the best methods to use to apply an extra layer of protection, especially for hybrid teams, or those working remotely. Software vulnerabilities (or outdated software) accounted for 77% of all incidents — alongside poor password security and phishing attacks in the past 12 months, demonstrating that it is a magnet for malware and breaches automatically updating your software can prevent that. Finding the right malware protection can be daunting, but it’s a great way to ensure that your business is safe and secure. We researched the best antivirus software for business to help you narrow things down, with Norton and McAfee are some of our top two.
