A cyber attack on businesses is becoming “a near certainty for most businesses,” the survey noted, and companies say the typical breach has cost them a least half a million dollars. Worse than that, 59 percent of respondents said the most serious consequence of any breach was the theft of information assets, followed by business disruption.
On the other side of the spectrum, respondents cited customer turnover, reputation effects and damage to critical infrastructure as the least serious consequences.
The report also found that although “external agents” are responsible for most breaches (55 percent), the insider threat follows closely with 49 percent.
Employee mobile devices and laptops are the most likely endpoint from which cyber attacks are launched: 34 percent of respondents say attacks occurred from infected laptops or remotely due to an employee’s insecure mobile device.
Despite knowing that mobile devices pose serious risk, 60 percent of respondents say their organizations allows devices such as smartphones and tablets to access their company’s network or enterprise systems, the report noted.