The latest International Cyber Benchmarks Index™, for March 2018, is 14.4, maintaining the upward trend.
Impact of cyber attacks
Over nine out of ten participants agreed escalating costs of On-Premise hardware mean they are looking to move towards cloud solutions for DNS and DDoS mitigation. This increases the survey average by three points.
Memcached attacks – actions taken to minimize risks and whether these will become the ‘norm’
Vast majority of companies (92%) have taken steps to minimize the risk from amplification attacks utilizing Memcached servers and nine of ten agree these types of attack will become the ‘norm’.
Cyber threats ranked in order of level of concern
During January-February 2018, Ransomware was the greatest concern followed closely by System Compromise and DDoS.
How threat of attack by various vectors has changed
During January-February 2018, DDoS was most likely to be perceived as an increasing threat to organisations, followed by Ransomware and Social engineering - email.
How organisations’ ability to respond to threats has changed
During January-February 2018, organisations have focused most on increasing their ability to respond to Ransomware, DDoS, Generalized phishing and Targeted hacking.
How the risk of attack from various actors has changed
During January-February 2018, organisations have perceived the most likely increase in threats to be from Criminals and Unknown actors.
How threat landscape has changed
During January-February 2018, organisations have continued to perceive the threat landscape to be increasing most from the World at large and least from within their Own company.
Whether respondents have ever been on the receiving end of a DDoS
43% of enterprises surveyed in March 2018 have *ever been on the receiving end of a DDoS, an increase on previous reporting periods.
* Note that the sample composition changes from wave to wave which explains why the trend for this question can be down as well as up.
Whether survey respondents outsource DDoS mitigation
48% of enterprises surveyed in March 2018 outsource their DDoS mitigation, higher than any previous reporting period, and pushing the average up to 42%.
Length of time taken to initiate DDoS mitigation
In March 2018, enterprises were more likely than in previous reporting periods to be most likely to take between 60 seconds and 5 minutes to initiate DDoS mitigation.