Cyberthreat: Trend Micro’s cry of alarm

Trend Micro’s Cyber ​​Risk Index (CRI) has just been unveiled. Its results point to alarming figures. Thus, 76% of companies expect to suffer a computer attack in the next 12 months. It confirms that telework and the Cloud are the main sources of risk for organizations. A cry of alarm in the face of this news gives galloping cyberisques.

The data published in this latest version of Trend Micro’s Cyber ​​Risk Index is calculated by the Ponemon Institute by measuring the gap between the level of security preparedness of companies and their likelihood of being attacked.

First lesson: three out of four companies expect to be the target of an attack in the next 12 months and a quarter even assess this risk as being ‘very probable’.

According to Nicolas Arpagian – Director Cybersecurity Strategy at Trend Micro, “ To develop an effective cybersecurity strategy, organizations must be able to assess and identify the risks they may face. In this context, the CRI highlights the main concerns of companies in terms of cybersecurity: the threats linked to teleworking and digital transformation are more topical than ever. Therefore, companies have every interest in gaining readability, and therefore efficiency, by centralizing their security tools. “.

The CRI is based on a numerical scale from -10 to 10, with -10 representing the highest level of attack risk. The current global index is -0.04, which represents a “high” risk. The strongest marker is in the United States (-0.18) where businesses face a stronger cyberthreat index than in other countries around the world. Organizations are aware of this level of risk: 84% of them claim to have been targeted by one or more attacks in the past 12 months and more than a third (35%) admit to having suffered at least seven in the past of the same period.

Ransomware, phishing, social engineering and denial of service (DDoS) attacks are among the threats of greatest concern to organizations, as are the serious consequences that such intrusions could cause (theft, damage to equipment, costs associates, loss of customers, etc.). Companies are particularly concerned about the impact of a potential attack on their IT infrastructure. They are especially concerned about the security of employees on the move or working remotely, the Cloud and third-party applications. Such a finding highlights the ongoing challenge that many of them face to sustain the digital choices made during the pandemic: essential investments to support remote working, increase the efficiency and agility of the company and ultimately cover the extent of these new attack surfaces. As Dr. Larry Ponemon, CEO of the Ponemon Institute explains, “Companies face demanding security challenges every day, whether it’s software vulnerabilities, data breaches or ransomware.” Trend Micro’s CRI is a real asset for measuring the evolution of risks and attack surfaces. It allows companies to strengthen their level of security and serves as a guide for their strategic planning. »

The Cyber ​​Risk Index highlights the level of preparation of companies in terms of security. Among the major challenges they face are:

– support for the security of DevOps environments,
– the limits of the authority of Cybersecurity Managers and the resources that are still too limited

to set up an optimal security system,
– too many instances of non-compliance with security policies, standard operating procedures and external requirements.

These results illustrate the need to allocate more resources to teams, processes, and technology to improve organizations’ level of threat preparedness and reduce the level of risk overall.

Leave a Comment