Latest survey results – January 2018

The latest International Cyber Benchmarks Index™, for January 2018, is 10.5, maintaining the upward trend.

Impact of cyber attacks

Nine out of ten participants agreed that a WAF is an essential component of their company's security infrastructure. This increases the survey average by a significant margin.

Cryptocurrencies-potential reasons for use and whether they put companies at risk of DDoS attack

A majority of organizations (55%) would consider using cryptocurrencies for business transactions even though the majority (80%) clearly acknowledge the risk of DDoS attack.

Cyber threats ranked in order of level of concern

During November-December 2017, DDoS was the greatest concern followed by Financial theft and Ransomware.

How threat of attack by various vectors has changed

During November-December, Ransomware was most likely to be perceived as an increasing threat to organisations, followed by DDoS and Generalized phishing.

How organisations’ ability to respond to threats has changed

During November-December, organisations have focused most on increasing their ability to respond to DDoS, Ransomware and Targeted hacking.

How the risk of attack from various actors has changed

During November-December, organisations have perceived the most likely increase in threats to be from Criminals and Unknown actors.

How threat landscape has changed

During November-December, organisations have continued to perceive the threat landscape to be increasing most from the World at large and now least from within their Own company.

Whether respondents have ever been on the receiving end of a DDoS

39% of enterprises surveyed in January 2018 have *ever been on the receiving end of a DDoS, in line with previous reporting periods.

* Note that the sample composition changes from wave to wave which explains why the trend for this question can be down as well as up.

Whether survey respondents outsource DDoS mitigation

40% of enterprises surveyed in January 2018 outsource their DDoS mitigation, in line with previous reporting periods.

Length of time taken to initiate DDoS mitigation

In January 2018, enterprises continued to be most likely to take between 60 seconds and 5 minutes to initiate DDoS mitigation with fewer responding within 60 seconds.