Indian Businesses Continue Having Cybersecurity Concerns with Remote Working, One Year into the Pandemic, Finds Thales

  • 40% of respondents from India reported an increase in the volume, severity, and/or scope of cyber-attacks in the last 12 months in comparison to the global figure of 47%
  • Nearly 2 in 5 (35%) of respondents, globally, find malicious insiders as the biggest threat to data security
  • 48% of respondents in India (38% worldwide) consider third-party vendor networks to be the biggest target for cyber attackers

Date:

 

Despite being over a year into remote working and the possibility of a likely shift to hybrid remote/in-office working models, security remains a key concern for respondents both globally and in India. While 38% of respondents from India continue to be very concerned about the security risks while working remotely, globally, this figure stands at 39%.

ads

This is just one of the key insights from the 2021 Thales Global Data Threat Report, a commissioned study conducted by 451 Research, part of S&P Global Market Intelligence, which reveals that managing security risks is undoubtedly getting more challenging, with almost 40% of respondents from India reporting an increase in the volume, severity, and/or scope of cyber-attacks in the last 12 months.

Attacks On The Rise

Talking about global stats, of those who have ever experienced a breach, two in five (41%) had it happen in the last year. This number has nearly doubled from 21% in 2019 globally, marking a significant shift in the threat posed.

For respondents from India, malware (56%) is the leading source of security attacks followed by ransomware (53%), and phishing and credential stuffing (both 43%). Yet, when it comes to how attacks occur, the message is clear: internal threats as well as external attackers are still of great concern to industry. Malicious insiders (40%), external attacks (25%) and human error (25%) have been spotted by respondents from India as the types of attacks seen with the greatest threat.

Despite the increased risk remote working has posed to enterprises throughout the pandemic, nearly half (48%) of respondents from India report that their security infrastructure was not prepared to handle the risks caused by Covid-19. In fact, only one in five (21%) of organisations believe it was very prepared.

big bang

Major targets for Cyber-Attacks

Forty-eight percent of respondents from India rank third-party vendor networks as the biggest target for cyber attacks, followed by on-premises legacy applications (44%), cloud based storage (40%) and web applications (38%).

Ashish Saraf, VP and Country Director – India, Thales, comments: “Many organizations experienced heightened security challenges over the last year and with the increasing number of ransomware attacks, organizations are now facing a double extortion threat. Not only could they be locked out of their critical IT & OT systems but also have their sensitive data released on the internet. The traditional aspect of just relying on a sound backup and restore strategy is no longer sufficient, organizations need to implement a comprehensive digital security including controlling access to data, encryption of sensitive data coupled with secure management and control of encryption keys. It is important for all the stakeholders in the data flow chain to embrace cutting-edge technology solutions to mitigate these risks.”

huges

Multicloud Complexity Increases Risks Globally

As increases in attacks continue, businesses are turning to the cloud to store their data in this digital-first world. More than half (55%) of businesses, globally, report that more than 40% of their data is stored in external cloud environments. Despite this, only 17% of businesses have encrypted at least half of their sensitive data stored in the cloud. On top of this, complexity is an increasing issue, with many respondents now using at least two PaaS (Platform as a Service) providers (45%) and/or two IaaS providers (Infrastructure as a Service). A quarter (27%) of businesses are currently using more than 50 SaaS (Software as a Service) apps.

Future Challenges and the Road Ahead

Globally, companies are recognising the issues they are facing and are attempting to address them with Zero Trust strategies. More than three quarters (76%) of respondents’ cloud strategy reportedly rely to some degree on Zero Trust security. Almost half (44%) of respondents selected Zero Trust network access (ZTNA)/software-defined perimeter (SDP) as the leading technology to invest in during the pandemic. This was followed by cloud-based access management (42%) and conditional access (41%). In fact, a third (30%) of global respondents claim to have a formal Zero Trust strategy and, interestingly, those with a formal Zero Trust strategy are less likely to also report having been breached.

However, despite businesses making moves to stop current threats, worries are growing about future challenges on the horizon. Looking ahead, 82% respondents from India have shown concerns about the security threats of quantum computing, a threat arguably exacerbated by the increasing complexity of cloud environments.

Eric Hanselman, Chief Analyst at 451 Research, part of S&P Global Market Intelligence added: “The native controls and protections available in cloud environments address a set of necessary capabilities, but they’re often insufficient to deliver effective protections for sensitive data and workloads, especially when it comes to compliance with regulations such as GDPR and the implications of the Schrems II ruling. Organizations need to increase their use of encryption and ensure they take full advantage of encryption’s benefits by controlling the secrets that protect their data through BYOK (Bring Your Own Key), HYOK (Hold Your Own Key) or BYOE (Bring Your Own Encryption) approaches. Organisations also need to make internal changes to ensure that personnel at all levels understand the security challenges and to properly align investment priorities. Senior executives need to obtain a more complete understanding of the levels of risk and attack activity that their front-line staff are experiencing.”

More like this

The Year 2024: World at War or World War III?

As 2024 progresses, global peace prospects remain dire, with...

SpaDeX Mission: ISRO Ready for Cosmic Tango

After successfully launching the formation flying of two spacecraft...

US Navy Wasted $1.8 Billion on Cruiser Modernisation: GAO Report

Washington: The US Navy has wasted $1.84 billion since...

China Protests Military Sales to Taiwan, Says United States ‘Playing with Fire’

Washington: The Chinese government protested the latest American announcements...

US Space Force Working on New International Partnership Strategy for Better Integration

Washington: The Space Force is working on a new...

Supply Chain Disruption Grounds 102 Aircraft in India

New Delhi: The government revealed that 102 aircraft are...

No Proposal to Make Old Chandigarh Airport Building Operational: Civil Aviation Ministry

New Delhi: Chandigarh MP Manish Tewari asked Parliament whether...
Indian Navy Special EditionLatest Issue