https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Solutions Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
  • MSP 501
    • Back
    • MSP 501 Rankings
    • NextGen 101 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Channel Futures 20: Top Tech Providers
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2023 Editorial Calendar
  • Awards
    • Back
    • 2022 MSP 501
    • Channel Influencers
    • Circle of Excellence
    • DE&I 101
    • Technology Advisor 101 (TA 101)
    • Channel Leaders Lists
  • Events
    • Back
    • 2023 Call for Speakers
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Technology Solutions Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
  • MSP 501
    • Back
    • MSP 501 Rankings
    • NextGen 101 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Channel Futures 20: Top Tech Providers
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2023 Editorial Calendar
  • Awards
    • Back
    • 2022 MSP 501
    • Channel Influencers
    • Circle of Excellence
    • DE&I 101
    • Technology Advisor 101 (TA 101)
    • Channel Leaders Lists
  • Events
    • Back
    • 2023 Call for Speakers
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Security


Shutterstock

Phishing

Mimecast: ‘Impersonation’ Email Attacks Now All Too Common

  • Written by Edward Gately
  • May 29, 2019
Nearly all of those companies surveyed reported being hit by phishing attacks.

Security providers, as well as enterprises, need to do much more to bring the state of email security to a good place, according to Mimecast, which released its third annual State of Email Security report Wednesday.

The report was conducted by Vanson Bourne and includes insights from more than 1,000 global IT decision-makers. Findings include organizations’ perspectives on email-based attacks, where businesses are missing the mark with internal cybersecurity awareness training, and the need for timely threat intelligence plans and enhanced cyber resilience strategies.

Mimecast's Matthew Gardiner

Mimecast’s Matthew Gardiner

Matthew Gardiner, Mimecast’s director of security marketing, tells us security professionals and their organizations need to adjust their focus from prevention to resilience.

“Given the critical nature of email to organizations, the utility of it to attackers, and susceptibility of employees to highly socially engineered phishes, the goal of cyber resilience for email is much more attainable, while meeting the primary business needs of the organizations,” he said.

According to the report, 61% of organizations believe it’s likely or inevitable they’ll suffer a negative business impact from an email-borne attack. And in the last year, more than 85% of respondents experienced an impersonation attack, with 73% of impersonation attack victims experiencing a financial loss as a direct result.

In addition, a whopping 94% experienced phishing attacks in the last year. Fifty-four percent of respondents saw phishing attacks increase, 65% saw impersonation attacks increase and 41% saw internal threats or data leaks increase.

More than half of organizations surveyed were hit by a ransomware attack that directly impacted business operations, nearly double last year’s figure of 27%. Eighty-six percent of organizations that experienced an impactful ransomware attack suffered at least two days of downtime as a result, with three days being the average amount of downtime.

On average, it will cost businesses close to $4 million when a breach occurs, according to the report, and nearly four in 10 of those that suffered losses from email-based impersonation attacks noted data loss as what hurt their organization the most.

“It is not that organizations aren’t making cybersecurity a top priority; they often are,” Gardiner said. “It is more that they are struggling to deliver given the changing focus and nature of attacks, the technical debt that has built up over the years in their IT applications and infrastructure, the complexity and disjointed nature of their existing security systems, and the lack of available security expertise for hire. This complexity is the friend of the attacker, not the defender.”

Nearly all organizations offer cybersecurity and awareness training to employees, but the most widely used method of awareness training happens in a group session, which doesn’t translate as well, according to Mimecast.

“Security awareness training needs to be engaging – mostly humorous – frequent enough to be top of mind, but brief enough to not be a burden on the everyday employee,” Gardiner said. “This is generally beyond the capability of most security and training teams, and as such should be subscribed to as opposed to being built in-house.”

There is some good news in the report, he said. The research revealed that more than 90% of organizations are already using some threat intelligence sources, and 44% of respondents currently see threat intelligence as extremely important to their organizations, he said.

“These statistics are a strong sign that organizations are not going it alone,” Gardiner said. “Given that attackers collaborate all the time, it is great to see that the defenders are collaborating by sharing this type of intelligence. Another element of good news is that those organizations that are mature in the implementation of their cyber resilience strategies are seeing positive results, namely: reduced losses from email impersonations, faster recovery times after an attack, and a lower rate of the internal spread of malicious activity.”

Tags: Agents Cloud Security

Most Recent


  • Making Waves
    7 Channel People Making Waves This Week at TD Synnex, Veeam, Kaseya, Zendesk, More
    Microsoft has discovered malicious activity by a state-sponsored threat actor based in China.
  • Businessman reading cloud computing news
    Cloud Computing News: VMware, Celigo, Google Cloud, AWS Dominate the Week
    Find out what the vendors are up to this week and how partners are impacted.
  • OffSec Partners Get Expanded Global Partner Program
    The expanded partner program includes three new partner types.
  • zero day vulnerability
    Barracuda Networks Identifies Long-Exploited Zero-Day Vulnerability
    The earliest identified evidence of exploitation dates back to October 2022.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Conflict Boxing Gloves
    Channel Conflict, Controversy: SolarWinds Hack, Racism, Layoffs, Zoom-RingCentral
  • Social media smartphone
    Social Media Roundup: Partners Talk Crypto, Security Hiring
  • PlanetOne Gainey Golf Event Feature
    PlanetOne Golf Event: In-Person Channel Networking Makes Big Comeback
  • DIY Network and Security Management 'Gotchas'

Upcoming Events

View all

Channel Partners Europe

June 13, 2023 - June 14, 2023

Channel Futures Leadership Summit

October 30, 2023 - November 2, 2023

Channel Partners Conference & Expo

March 11, 2024 - March 14, 2024

Galleries

View all

7 Channel People Making Waves This Week at TD Synnex, Veeam, Kaseya, Zendesk, More

June 2, 2023

Cloud Computing News: VMware, Celigo, Google Cloud, AWS Dominate the Week

June 2, 2023

Channel People on the Move: HPE, Lumen, Sophos, TD Synnex, AireSpring, More

June 1, 2023

Industry Perspectives

View all

Dell Technologies World: Dell Apex Expanded Across On-Premises, Cloud and Edge

May 22, 2023

Identity Is Increasingly Valuable – and Targeted

May 18, 2023

Gaining a Competitive Advantage through AV Managed Services

May 10, 2023

Webinars

View all

From Problem to Profit: Mastering the Science of Selling Using Business Outcomes

May 9, 2023

Meet the 2023 Channel Futures Channel Influencers

April 13, 2023

DE&I Dialogue: How the Right DE&I Initiatives Can Propel Your Business

April 5, 2023

White Papers

View all

6 UCaaS Reseller Challenges and How Real World Businesses Solved Them

February 1, 2023

Frost Radar: North American UCaaS Market, 2022

February 1, 2023

The Complete Guide to White-Label UCaaS for Reseller Success

February 1, 2023

Channel Futures TV

View all

Coffee with Craig and James Episode No. 123: MartinWolf M&A Advisors, CP Expo Preview

UScellular Takes On Rivals with Partner Program Simplicity

April 21, 2023

OpenText Simplifying Deal Registration, Doubling Down on MDF

April 21, 2023

Everything-as-a-Service: CloudBlue Touts Critical Customer Transition

April 18, 2023

Twitter

MSP 501

The industry's largest and most comprehensive partner awards program.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2023 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X