May 2017

The first International Cyber Benchmarks Index™, for May 2017, is 6.5.

Impact of recent notable cyber events

Two-thirds of participants said specific *recent notable cyber events have directly affected the way they protect their enterprise since the beginning of 2017.

Cyber threats ranked in order of level of concern

Since 1 January 2017, Ransomware has been of greatest concern followed by System compromise and then DDoS.

How threat of attack by various vectors has changed

Since 1 January 2017, Ransomware is most likely to be perceived as an increasing threat to organisations, followed by social engineering via email, generalized phishing and DDoS.

How organisations’ ability to respond to threats has changed

Since 1 January 2017, organisations have focused most on increasing their ability to respond to DDoS and Ransomware, followed by Generalized phishing.

How the risk of attack from various actors has changed

Since 1 January 2017, organisations perceive the most likely increase in threats has been from Criminals and Unknown actors.

How threat landscape has changed

Since 1 January 2017, organisations perceive the threat landscape is increasing most from the World at large and least from within their Own company.

Whether respondents have ever been on the receiving end of a DDoS

40% of enterprises surveyed in May 2017 have ever been on the receiving end of a DDoS.

Whether survey respondents outsource DDoS mitigation

42% of enterprises surveyed in May 2017 outsource their DDoS mitigation.

Length of time taken to initiate DDoS mitigation

In May 2017, enterprises were most likely to take between 60 seconds and 5 minutes to initiate DDoS mitigation.