Email cloud security vendor Mimecast recently released the results of their study showing CEOs are increasingly held responsible for cybersecurity by IT decision makers and other C-Level executives.
In 2017, only 27% of these IT decision makers and executives held CEOs responsible as the weak link in their cybersecurity, whereas in 2018 that percentage has risen to 37%.
While 78% of the Mimecast survey respondents said that cybersecurity should be a concern for IT, only 11% of enterprises continuously train their employees in cybersecurity best practices. This disconnect in cybersecurity responsibility results in their employees proving a dangerously insecure attack vector. 92% of respondents saw ransomware attacks delivered through employee emails. 90% said the rate of phishing attacks have remained consistent or increased over the last year.
Furthermore, the Mimecast survey found that 27% of enterprises had an employee send sensitive data to the wrong email, and 20% said employees had emailed sensitive data in response to a phishing attack. However, part of the reasons for CEOs are increasingly held responsible for cybersecurity is that they are the most likely to mistakenly send sensitive or proprietary data to the wrong addresses. 31% of IT decision makers said this happened to their enterprise.
Other findings from the Mimecast survey include:
- 59% of respondents fear an email-borne attack this year
- 27% said that network downtime resulting from a cyberattack could last as many as five days.
- 61% suffered from infections spreading to other employees via email.
You can read more about the survey here.