burger menu
Security Awareness: State Of The Phish

Security Awareness: State Of The Phish

    Add to bookmarks
SUMMARY

This research on the state of phishing reveals that cyber attackers are putting their eyes on people rather than targeting technical elements.

The study found that email is the main attack vector, as cyber attackers are using macro- and micro-level campaigns with employees as targets. On the other hand, the brand image of large companies is also under the radar of cyber attackers as suspicious registered domains are surpassing defensive brand-registered domains at a ratio of 20 to 1. 

According to this paper, a significant amount of users is being targeted by malvertising campaigns which feature fake browser and plugin updates with dangerous software. The study also mentions that cyber attackers are taking advantage of the appeal of pirated content in their social media-based attacks. 

Another finding from this report is that end users are unfamiliar with basic used infosecurity terms. A large majority of people tend to rely on IT departments to find out and sort out accidental downloads of malicious software, which is a source of concern. 

The majority of infosec professionals, the document notes, indicated that the rate of phishing attacks went up or remain the same throughout the year. More of the surveyed professionals expressed that they experienced a higher number of attacks during 2018 than in 2017. Phishing and spear-phishing suffered the most significant rises.

On the other side, credential compromise grew by over 70% since 2017, surpassing malware infections to become the most commonly experienced attack in 2018, which is a source of serious concern. Reports of data loss have also seen a significant increase since 2016, then study adds.

Report download requires free registration on the publisher's website.

OUTLINE

Introduction

End-user risk

Survey results

Security Awareness training

DETAILS

Overview

Researchfinder Rating
5 out of 5 stars
Title
Security Awareness: State Of The Phish
Region
Global
Published
Feb. 1, 2019
Publisher
proofpoint
Price
FREE
Language
ENGLISH

Content

Number of Pages
23
Number of Tables
0
Number of Exhibits
21
Topics
security
Tags
cyber attack, cyber security, global, phising, proofpoint, ransomware, security
Methodology
This report is based on the Proofpoint’s global database of 15,000 infosec professionals and a third-party survey of over 7,000 working adults in the US, UK, France, Germany, Italy, Australia, and Japan. The research is also based on data from tens of millions of simulated phishing emails sent to end users in many different types of organizations.
EVALUATION

The report gives a very detailed and data-rich picture of the extent of the end-user risk regarding phishing and social engineering attack. In addition, the report vividly describes information security professionals’ experience and how phishing impacts organizations.

Positives:

  • Great graphs
  • Great insights
  • Appealing design
  • Highlighted key findings
  • Recommendations

Similiar Reports

Internet Trends 2019

FREE

2019 Global eCommerce Fraud Management Report

FREE

Good Practices for Security of Internet of Things

FREE