Data Breaches Hit More Organizations in 2014
This year's Cyberthreat Defense Report shows an increase in the number of organizations that admit they were breached.As attacks continue to rise, security budgets are increasing, according to the 2015 Cyberthreat Defense Report (CDR), which is based on a survey of 814 security decision makers and practitioners. More than seven in 10 respondents (71 percent) noted that their networks were breached in 2014, up from 62 percent in last year's study. The number of organizations with multiple security breach incidents also rose, according to the report, which was written by CyberEdge Group and sponsored by Blue Coat Systems, Citrix Systems, NetIQ, PhishMe, Tenable Network Security, ThreatTrack Security, Webroot, CloudLock, Cylance, Endgame, iSIGHT Partners and Triumfant. In 2014, 22 percent of respondents said their networks were breached six or more times, up from 16 percent in 2013. More breaches are in store for this year. More than half the study participants (52 percent) said they expect a successful cyber-attack in the next 12 months. In contrast, in last year's report, 39 percent of respondents noted that they expected a successful cyber-attack in the coming year.
The study found that phishing and spear-phishing attacks generate the most concern. "Phishing and spear-phishing attacks keep security professionals up at night because they are effective and low-cost attack vectors," Renee Bradshaw, senior solutions marketing manager, NetIQ, told eWEEK. "As you look at the biggest breaches of the last year, targeted spear-phishing attacks involving malware were at the leading edge of extended campaigns to breach the defenses of victim organizations' networks and exfiltrate sensitive data."