Why Cyber Teams May Not Report All Cyber Attacks

New research indicates that 40% of cyber teams are concerned about their jobs if a cyberattack impacts their respective organizations.

System hacked alert on computer screen after cyber attack on network. Cybersecurity vulnerability on internet, virus, data breach, malicious connection. Employee working in office.

VikingCloud‘s new research revealed that 40% of cyber teams have not reported a cyber incident out of fear of losing their jobs—a disclosure that signifies a serious underreporting of cyber breaches globally. This trend leaves businesses at risk of being non-compliant with emerging industry regulations, as well as vulnerable to rising attacks, reported in the survey to have both increased in frequency for 49% of companies and severity for 43% in the past 12 months.

The data, gathered from a quantitative survey of nearly 170 cybersecurity professionals at the C-suite, VP, director, and manager level in the United States, United Kingdom, and Ireland, shows 96% of companies are confident in their ability to detect and respond to cyberattacks in real time. Yet, the same companies also acknowledge that they are unprepared for today’s most pressing cyber risks, including ransomware attacks against a critical third party (48%), phishing attacks (40%), DNS attacks (33%), and ransomware attacks against their business (32%).

“Cyber teams are facing major challenges such as the growing talent shortage, new attack methods, and the advancing sophistication of cybercriminals,” said Kevin Pierce, Chief Product Officer at VikingCloud. “Although many leaders report confidence in their defensive capabilities, it’s clear this false sense of security is leaving many businesses vulnerable. Teams are trying to do more with less while cybercriminals continue to stay one step ahead. Without understanding their actual risk status and investing in the right technology, people, and expert partners, companies will become even more susceptible to the latest attack methods.”

VikingCloud’s research “The 2024 Threat Landscape Report: Cyber Risks, Opportunities, & Resilience,” also uncovered:

  • New cyberattack methods fueled by AI are keeping leaders up at night: 53% reveal emerging AI attack methods are creating new attack points for which they are unprepared. The most worrying AI threats include Generative AI (GenAI) model prompt hacking (46%), Large Language Model (LLM) data poisoning (38%), Ransomware as a Service (37%), GenAI processing chip attacks (26%), Application Programming Interface (API) breaches (24%), and GenAI phishing (23%).
  • A rising skills gap between cyber teams and criminals: 55% of companies believe modern cybercriminals are more advanced than their internal team. 35% reported the technology cybercriminals use is more sophisticated than the tech to which their team has access. Despite that, a third of companies still have not trained their team on GenAI-related cyber risks.
  • Key pain points include the talent shortage and limited resources: Only 10% of companies have increased cyber hiring in the past 12 months, and nearly 20% of companies say a lack of qualified talent is a key challenge to overcoming cyberattacks. 35% of companies don’t have enough budget to invest in new tech and 32% don’t have enough budget to hire more staff.
  • Cyber alert fatigue is straining cyberattack response times: 33% of companies were late to respond to cyberattacks because they were dealing with a false positive, and 63% spend more than 208 hours per year managing false positives. Overall, 68% of cyber teams surveyed could not currently meet The Securities and Exchange Commission’s four-day disclosure requirement and cyber industry benchmark based on the average amount of time they estimate it would take to respond to a new, serious attack.

The Critical Need For Advanced Technology

Technology has the potential to be an equalizer for cyber teams. About 63% of companies are looking to implement new tech that can help alleviate the impacts of the cyber talent shortage. Around 41% of respondents said that GenAI has the most potential to address cyber alert fatigue. Yet only 5% of companies allocated additional budget to their cyber programs in the past year to address these ongoing challenges.

View the full report, “The 2024 Threat Landscape Report: Cyber Risks, Opportunities, & Resilience.”

Click here for more news and insights about Cybersecurity.

Business Continuity, Featured, Press Releases, Products, Safety and Security

Cyber Breaches, Cyber Team, Cyberattacks, Cybersecurity, GenAI, Generative AI, Phishing, Ransomware Attacks, Talent Shortage, Third-Party Risk, VikingCloud

Sponsored Content

Webinars, Podcasts & Videos

Business Continuity Webinar

Did You Miss Our Latest Business Continuity Webinar?

It's not too late! You can still watch the “Business Continuity Exercise Planning and Facilitation Techniques To Start Now” video webinar.

facility resilience webinar

From Prevention To Action: The Role Of Facilities Management In Handling Emergencies And Maintenance

This free webinar on facility resilience will provide actionable strategies to safeguard assets, protect lives, and ensure operational continuity.

adaptive decision-making

Listen Now: Decision-Making During A Crisis

Robert C. Chandler, Ph.D, Founder and Principal of Emperiria discusses his research on adaptive decision-making in this podcast.

Receive the latest articles in your inbox

Share to...