As Enterprises and government agencies across the globe rush to support employees working remotely during the pandemic, attackers seized upon the resulting vulnerabilities, leaving security teams stretched thinly and struggling to keep up, according to a new survey from CRA Business Intelligence, the research arm of cybersecurity information services company CyberRisk Alliance.
The data and insights in this report are based on an online survey conducted in early 2022 with 1,100 IT and cybersecurity decision-makers and influencers representing 11 countries. Participants ranged from chief executives to senior analysts or their equivalents across several continents. Roughly 100 participants were selected from each of the following countries: United States, Mexico, Brazil, United Kingdom, Germany, France, The Netherlands, Spain, United Arab Emirates, Australia, and Singapore.
Among the key findings:
- The surge in remote workers and highly distributed customer bases has changed the corporate landscape significantly – and permanently.
While some companies report they have shuttered physical offices for good, others still holding on to commercial properties must contend with remote staff or hybrid workplaces for the foreseeable future. As a result, some (%) moved more applications into the cloud and now rely on traditional network security staples such as VPNs and firewalls placed on corporate mobile devices. For employees using their own equipment, many companies are deploying solutions to monitor and manage DNS, DHCP and IP traffic moving in and out of servers.
- The new workforce reality elevates concerns with data leakage, ransomware and attacks through remote access tools and cloud services. Respondents indicated concerns about their abilities to counter increasingly sophisticated cyberattacks with limited control over employees and vulnerable third-party partners. The sophistication of state-sponsored malware also is a source of worry for many.
- Organizations have good reason to worry: Most participants experienced up to five security incidents leading to at least one breach.
Attacks tended to originate with WiFi access points, employee-owned endpoints, or the cloud. Phishing was a common conduit to gain illegal entry to hijack credentials and steal or lock down data files. These weren’t minor events either; the study showed 40% suffered at least US $1 million in direct and indirect losses.
- Interest in Secure Access Service Edge (SASE) frameworks is accelerating. As assets, access and security move out of the network core to the edge with the push for virtualization, 53% have already partially or fully implemented SASE and another 28% intend to do so.
- IT security budgets and spending increased for many in 2021, with even more security teams expecting a bump in budgets in 2022.
Many are considering primarily hybrid-oriented solutions that protect assets both on premises and in the cloud. And they are trying a wide variety of solutions – everything from end point and network security to cloud access security brokers, DNS security and threat intelligence services.