More CISOs concerned about cyberattack risk

Sixty-eight percent of chief information security officers worldwide reported feeling that their organizations would be impacted by a cyberattack within the next year, up from 48% of CISOs who expressed such concern last year, reports TechRepublic. The U.S. had the fourth-highest percentage of CISOs concerned with cyberattack risk, after the U.K., Germany, and Singapore, while cyberattack concerns were highest among CISOs in the retail, manufacturing, and finance sectors, according to a Proofpoint survey. Business email compromise was cited to be the leading cybersecurity threat to organizations, ahead of insider threats, which was last year's biggest risk, cloud attack compromise, distributed denial-of-service attacks, supply chain attacks, and ransomware attacks. The findings also showed increasing willingness among CISOs to pay ransoms even though most believe their organizations' capability to identify and avert ransomware threats before significant damage. Meanwhile, DevSecOps, product development, and other business innovation efforts are the leading priorities of CISOs for the next two years but more than half have noted the adverse impact of the economic downturn on their cybersecurity spending.