What are the most dangerous cyberattacks for companies? – eGospodarka.pl

Cyberattacks on Polish companies are ineffective – a study by KPMG shows that 7 out of 10 companies have encountered them for the first time in the last 12 months. Businesses are most concerned about cybercrime in the broadest sense, both by cyber gangs and by individual hackers, or even by employees who have been arrested by dissidents or rivals. Therefore, the growing emphasis on digital identity protection is not surprising.

Also read:

History of cybercrime: the era of modern ransomware

From this text you will learn, among others:

  • What forms of support do companies use in response to cyberattacks?

  • What cybersecurity incidents are you most concerned about?

  • What factors motivate you to invest in identity and access management processes?

The number of cyber attacks on companies in Poland has increased again

The vast majority of organizations surveyed – 69% – reported security incidents. This means that last year was more dangerous in terms of cyber-attack attempts than in 2020 (5% increase in y / y). In 2021, an increase in the number of cyber attacks was recorded by 21% of entrepreneurs, and a decrease was recorded by only 4% of respondents. It should be noted that the number of companies that have observed 30 or more security incidents has more than doubled, which may indicate an increase in the activity of cybercriminals.

picture: mat. press releases

Number of security incidents reported by companies

69% of the organizations surveyed reported security incidents

Unchanged from previous editions of the survey, companies are concerned about the widely understood cybercrime threats, which remain the most frequently cited group that poses the most real threat. This was noted by 92% of companies, which is an increase of 7% compared to the previous edition of the survey.

Interestingly, for the first time since 2019, companies in Poland are no longer afraid of individual hackers (58% of responses). At present, companies perceive the greatest threat from organized cybercriminal groups (69% of responses). Half of the companies surveyed perceive cyberterrorists as a threat, and 42% fear the risk of data loss as a result of the actions of bribed or dissatisfied employees.

Russia’s aggression against Ukraine and the cyber war that has been going on for several months have warned Polish companies (especially key service operators) of the need to invest in cybersecurity and adapt existing security systems to new, advanced threats. The effectiveness of organized cybercriminal groups supported by foreign states is many times higher than the overall cyber threats. In the first quarter of 2022, the number of critical cyberattacks in Ukraine increased more than 20 times. Polish companies are increasingly realizing that it is impossible to fully protect themselves from advanced attacks. That’s why they also invest in security monitoring and response to cyberattacks to minimize the impact of unavoidable incidents, says Michał Kurek, head of KPMG’s Cyber ​​Security Group and Business Advisory Partner in Poland and Central and Eastern Europe.

Information leaks and phishing scams are the biggest threats to companies

The organizations involved in the study stated that the biggest cyber threats to them are malicious software (malware) and phishing, ie leakage of information through phishing credentials. In addition, companies are openly concerned about Advanced Persistent Threat and data theft by employees.

Compared to the previous edition of the survey, the level of awareness of the maturity of their security measures in the companies surveyed has significantly decreased. At the beginning of 2022, more than three-quarters of respondents stated a full security period in no more than half of the areas analyzed. Such results may reflect a conscious approach by companies to the growing need for appropriate security in relation to the current situation.

The new business reality of last year and the international cyber attacks observed in January and February 2022 necessitated additional checks on security maturity. Thus, they have led to a more rational approach to planning and increased focus on activities that ensure sustainability in this area. In most of the areas analyzed, only 19% of companies declare a security period, and only 4%.

Lack of skilled workers is the biggest obstacle to building IT security

64% of companies admit that the biggest obstacle to creating an appropriate level of security is the difficulty in finding and retaining qualified personnel. This is an increase of 14 percentage points compared to the previous edition of the survey. 57% of organizations say the problem is a lack of budget. One way to ensure an adequate level of cybersecurity is to outsource security functions and processes.

In Poland, 76% of KPMG respondents admitted that information security issues in their organizations are managed by foreign suppliers, and 65% of them outsource many functions. Firms use external assistance in response to cyber attacks (41%), awareness programs (39%) and security monitoring (34%).

The protection of the digital identity is gaining importance

In Poland, every third company surveyed (36% of respondents) has implemented solutions that automate rights management processes (Identity and Access Management – IAM). It was found that they are most commonly used in the organization’s data center (67% of cases), and only one in four companies using IAM uses the cloud service provided in the SaaS model. In turn, almost every second company has a system that protects access to privileged accounts (Privileged Access Management – PAM).

The utilization rate varies between 47% of companies surveyed using high-privilege account management solutions. Most organizations with a PAM-type system (79% of responses) require additional approval to access a privileged account, and 70% monitor and record privileged sessions.

Key motivations for investing in identity and access management processes

picture: mat. press releases

Key motivations for investing in identity and access management processes

The most important factor is to increase the security of processed data

For professionals responsible for information security in companies, the most important factor influencing the decision to start investing in identity and access management processes is to increase the security of processed data – 73% of respondents said.

One of the main motivations for 57% was the need to ensure compliance with the rules, while another 41% assessed such investments as an opportunity to optimize costs as a result of reducing the workload of employees. More or less every third company considers improving the quality of rights management or user convenience to be among the most important potential benefits.

In the age of digitalization – the widespread use of remote work, mobile technology or migration in the cloud – effective digital identity management is becoming the cornerstone of cybersecurity. Without automation, it is practically impossible to properly manage permissions in a large organization. A particularly important issue is the protection of privileged accounts, which is the main goal of organized cybercriminal groups. Without proper supervision, they can also be a source of serious internal abuse. The ongoing war in cyberspace is an additional motivation for Polish companies to invest in the field, says Michel Kurek, a partner in the Business Advisory Department and head of KPMG’s Cyber ​​Security Group in Poland and Central and Eastern Europe.

ABOUT THE REPORT:
KPMG’s Polish report “Cyber ​​Security Barometer. Digital Identity Protection” is based on a survey of 100 organizations in Poland with revenues of more than 50 million PLN. In January and early February 2022, Norstat Polska conducted a CATI telephone interview with those responsible for IT security in companies (board members, security directors, CEOs, IT directors or other persons responsible for this area). was carried out using the method.

Leave a Comment