Email attacks are having a major impact on businesses, with ever-evolving security concerns proving a challenge for CISOs, reveals a new report from security solutions firm Barracuda has revealed The report, titled 2019 Email Security Trends and commissioned by Barracuda, surveyed global IT stakeholders to capture their experiences and attitudes about the current state of email security. (Read the full report here)
The survey includes responses from 660 executives, individual contributors and team managers serving in IT-security roles in the Americas, EMEA, and APAC. It surveyed small, mid-sized, and enterprise businesses in technology, financial services, education, healthcare, manufacturing, government, telecommunication, retail, and other industries.
It found 74% of respondents say email attacks are having a major impact on their businesses, while 78% of organisations say the cost of email breaches is increasing.
The report revealed spear phishing is widespread, with 43% of organisations have been the victim of a spear-phishing attack in the past 12 months. Notably, more than three-quarters of organisations say their employees aren’t good at spotting suspicious emails.
Loss of productivity, reputation and much more
Overall, the study indicates that while most IT professionals are more confident about their email security systems than they were a year ago, email attacks continue to have a significant impact on businesses.
The report shows email attacks are having a direct business impact, and impacting the personal lives of IT security professionals, with 74% of respondents said that email attacks are having a major impact on their businesses.
The most common effects cited were loss of employee productivity, downtime and business disruption, and damage to the reputation of the IT team.
Nearly three-quarters of respondents reported experiencing higher stress levels, worrying about potential email security even when they’re not at work, and being forced to work nights and weekends to address email security issues.
Huge monetary losses
The report founds phishing and ransomware are top concerns, with 43% of organisations have been the victim of a spear-phishing attack in the past 12 months.
Meanwhile, breach costs and monetary losses are on the rise, with 78% of organisations said that the cost of email breaches is increasing, and 66% claimed that attacks have had a direct monetary cost on their organisation in the past year.
Nearly a quarter of respondents advised that attacks have cost their organisation $100,000 or more.
According to the research, employees remain a major weak link in an organisation’s security defenses. More than three-quarters of organizations said their employees aren’t good at spotting suspicious emails.
There are growing concerns about insider threats and Office 365, the report says, with 79% of IT professionals said they are worried about attacks and breaches stemming from inside the organisation, and 92% of Office 365 users have security concerns
Based on the success and proliferation of email-based attacks, IT security professionals will need to stay focused on the evolution and escalation of phishing, ransomware, and other threats and improve email security that goes beyond the traditional gateway, the report says.