The latest International Cyber Benchmarks Index™, for May 2022, is 57.0, maintaining the upward trend.
Way in which organization approaches DNS strategy
Just over half (54%) of organizations manage their DNS in-house and 46% work with a managed DNS service provider.
Usage of a secondary DNS solution/service and reasons
Two-thirds (67%) of organizations use a secondary DNS solution/service and the top reason for doing so is resiliency.
How healthy / up-to-date are organization’s DNS configurations
45% of organizations have very healthy / up-to-date DNS configurations whereas a higher proportion (49%) admit they are only somewhat healthy / up-to-date.
Whether statements are true / false about organization
ITDMs are highly likely to agree that they organization is on top of DNS configuration and security issues, have domains that adhere to best practices and are RFC-compliant.
Cyber threats ranked in order of level of concern
During March-April 2022, DDoS was the greatest concern followed by System Compromise and then Ransomware.
How threat of attack by various vectors has changed
During March-April 2022, Ransomware, DDoS and Generalized phishing were most likely to be perceived as increasing threats to organisations.
How organisations' ability to respond to threats has changed
During March-April 2022, organisations have focused most on increasing their ability to respond to Vendor or customer impersonation, Targeted hacking and DDoS.
How the risk of attack from various actors has changed
During March-April 2022, organisations have perceived the most likely increase in threats to be from Criminals and Unknown actors.
How threat landscape has changed
During March-April 2022, organisations have continued to perceive the threat landscape to be increasing most from the World at large and least from within their own company.
Whether respondents have ever been on the receiving end of a DDoS
85% of enterprises surveyed in May 2022 indicated that they have been on the receiving end of a DDoS attack at some time, slightly up on the previous reporting period*.
* Note that the sample composition changes from wave to wave which explains why the trend for this question can be down as well as up.
Whether survey respondents outsource DDoS mitigation
57% of enterprises surveyed in May 2022 outsource their DDoS mitigation, slightly up on the previous reporting period.
Length of time taken to initiate DDoS mitigation
In May 2022, enterprises were most likely to take between 60 seconds and 5 minutes to initiate DDoS mitigation, in line with previous reporting periods.