Alarming Cybersecurity Statistics in Midyear 2022

Despite all the efforts to combat and contain cyber-attacks, it seems, unfortunately, when we look at the numbers we see that the problem is getting worse every new year.

Below we look at some of the alarming statistics for this year.

According to the findings of a study carried out by Positive Technologies, in 93 percent of cases a threat actor can break into an organization’s network perimeter and gain access to its local network. Attacker’s first target is to breach an organization’s network perimeter.

The study found that cyber-criminals gain access to an organization’s internal networks through the compromise of its login credentials, including those used for system administration.

Although organizations are increasing their security budgets and adopting stricter security policies, they are constantly under pressure to cope with new and more sophisticated cyber security threats.

ThoughtLab performed a study to examine the security practices and performance of 1,200 companies in 13 industries and the public sector across 16 countries.

The study found that the year 2021 saw a 15.1% increase in the number of cyberattacks and data breaches compared to the previous year.

Despite the increased efforts to tighten security, many of the executives interviewed by ThoughtLab seemed concerned about their organization’s security for several reasons.

44% of the executives said that a major factor responsible for exposing their organizations to security risk was their increased use of partners and suppliers for services. Some 30% said that they lacked their companies lacked the budgets to ensure proper security, while several others pointed to the fact that the threat actors had better financial resources than themselves.

Upcity, which is a small business intelligence firm, surveyed 600 businesses on their security plans for 2022. Here are their findings:

  • Only 50% of US businesses have a cybersecurity plan in place
  • Of those, 32% of the businesses haven’t changed their cybersecurity plan since the Covid pandemic forced businesses into remote and hybrid operations
  • The most common causes of cyber-attacks are malware and phishing, at 22% and 20% respectively
  • Businesses in the US lost more than 6.9 billion to cyber-crime in 2021

A recent survey by Anchore shows that three out of five companies were targeted by supply chain attacks in 2021. The survey of 428 executives, directors, IT managers and managers in security and development, and DevOps found that nearly 30% of organizations were either mildly or severely hit by a software supply chain attack in 2021.

A new study from machine identity specialist Venafi found that 82% of CIOs who participated in the survey, 82% think that their organizations are prone to software supply chain attacks.

The sharp increase in the number of supply chain attacks and their sophistication has brought this issue into the spotlight and gained the attention of CEOs and Boards.

A new cybersecurity report from San Francisco-based Abnormal Security revealed that medical industries and insurance companies had a 45-60% chance of being prone to a phone fraud attack via email: a clever scam where the scammer sends an email to the target, asking to call them. In the second half of 2021, those attacks grew by 10 percent.

A report by Check Point Research found that there were 50% more attack attempts per week on corporate networks globally in in the year 2021 as compared to 2020.

The FBI’s Internet Crime Complaint Center (IC3) issued a public service announcement on May 4 2022, in which it shared updated statistics on Business Email Compromise (BEC) attacks.

The report looked at 241,206 incidents reported to law enforcement and banking institutions between June 2016 and December 2021 and said that the combined domestic and international losses incurred amounted to US $43.31 billion.

If you need state of the art security for your organization and want to discuss it further, please call or message Kelly on 0429 727 091