The latest International Cyber Benchmarks Index™, for November 2017, is 10.1, maintaining the upward trend.
Impact of recent notable cyber events
Three-quarters of participants said specific* recent notable cyber events have directly affected the way they protect their enterprise, a 2% increase on the previous reporting period.
Wheather concerned about Wireless devices being used for DDoS
An even higher number of participants (80%) are concerned that their Wireless devices could be used for DDoS when compromised.
Actions taking in response to concerns that Wireless devices could be used for DDoS when compromised
Cyber threats ranked in order of level of concern
During September-October 2017, DDoS was the greatest concern followed by Ransomware and IP theft.
How threat of attack by various vectors has changed
During September-October, Targeted hacking remained most likely to be perceived as an increasing threat to organisations, followed by Ransomware and DDoS.
How organisations’ ability to respond to threats has changed
During September-October, organisations have focused most on increasing their ability to respond to Ransomware, DDoS, Generalized phishing and DNS compromise.
How the risk of attack from various actors has changed
During September-October, organisations have perceived the most likely increase in threats to be from Unknown actors and Criminals.
How threat landscape has changed
During September-October, organisations have continued to perceive the threat landscape to be increasing most from the World at large and now least from within EMEA.
Whether respondents have ever been on the receiving end of a DDoS
41% of enterprises surveyed in November 2017 have *ever been on the receiving end of a DDoS, slightly up on previous reporting periods.
* Note that the sample composition changes from wave to wave which explains why the trend for this question can be down as well as up.
Whether survey respondents outsource DDoS mitigation
43% of enterprises surveyed in November 2017 outsource their DDoS mitigation, which is up on previous reporting periods.
Length of time taken to initiate DDoS mitigation
In November 2017, enterprises continued to be most likely to take between 60 seconds and 5 minutes to initiate DDoS mitigation.