View all newsletters
Receive our newsletter - data, insights and analysis delivered to you

Organisations not doing enough to defend against cybercrime

US organisations have been misjudging the severity of risks from cyber attacks, the survey claims.

By CBR Staff Writer

Organisations still have not been doing enough to protect themselves from both internal and external cyber crime, whilst the threat of cybercrime is on rise, a new survey from PwC and CSO Magazine has claimed.

The survey titled, ‘the 2013 State of Cybercrime’, revealed that despite all of the recent awareness surrounding cybersecurity, there had been modest movement in key indicators.

PwC Advisory Practice principal David Burg said that the facts are clear – today’s organisations are not taking the necessary steps to mitigate the risk of cybercrime, even in the face of increasingly serious and frequent threats.

"PwC believes the time is now for organizations to take action," Burg said.

"Cybersecurity is a business imperative, and senior executives and Boards need to understand the challenges, educate their employees to raise awareness and increase vigilance, and apply cyber threat intelligence to help abate risks from sophisticated threat actors."

Over 40% of survey respondents’ claim that the number of cybersecurity events at their companies had been constant, while one-fifth reported of slight rises.

The majority of respondents indicated insider crimes would probably cause more damage to an organisation compared to external attacks, while about one-fifth of respondents claimed hackers as the greatest risk to their business.

Content from our partners
Scan and deliver
GenAI cybersecurity: "A super-human analyst, with a brain the size of a planet."
Cloud, AI, and cyber security – highlights from DTX Manchester

"One of the key elements in defending against insider attacks is employee training and awareness," Burg added.

"Insider threat actors often show early warning signs of malicious intent that IT security tools cannot detect, but which employees and managers will notice – and can respond accordingly."

However, 30% reported that they do not have a formal plan outlining policies for reporting and responding to cybersecurity events at their organisation.

"One of the key elements in defending against insider attacks is employee training and awareness," Burg added.

"Insider threat actors often show early warning signs of malicious intent that IT security tools cannot detect, but which employees and managers will notice – and can respond accordingly."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU