Latest survey results – November 2020

The latest International Cyber Benchmarks Index™, for November 2020, is 41.8, maintaining the upward trend.

DNS security threats: level of concern and whether victim of in past year

Organizations are most concerned about domain hijacking; the threat they are most likely to have been a victim of. Overall, 3 in 5 have been the victim of at least one threat in the past year.

Organization’s awareness & preparedness to respond to threats launched as part of a DNS attack

Around 3 in 10 admit to having some reservations about their organization’s awareness & preparedness to respond to DNS attack threats.

DNS security threats: whether expecting an increase over end of year peak shopping period and whether changes made in preparation for this

Whilst almost 4 in 5 organisations expect to see an increase in DNS-related security threats over the holiday period, only 3 in 5 have made changes to DNS security in preparation for this.

Cyber threats ranked in order of level of concern

During September-October 2020, DDoS was the greatest concern followed by System compromise and then Ransomware.

How threat of attack by various vectors has changed

During September-October 2020, Ransomware, Targeted hacking and Generalized phishing were most likely to be perceived as increasing threats to organisations.

How organisations’ ability to respond to threats has changed

During September-October 2020, organisations have focused most on increasing their ability to respond to Vendor or customer impersonation, Targeted hacking, IP address hacking and DDoS.

How the risk of attack from various actors has changed

During September-October 2020, organisations have perceived the most likely increase in threats to be from Criminals and Unknown actors.

How threat landscape has changed

During September-October 2020, organisations have continued to perceive the threat landscape to be increasing most from the World at large and least from within their own company and industry.

Whether respondents have ever been on the receiving end of a DDoS

74% of enterprises surveyed in November 2020 indicated that they have been on the receiving end of a DDoS attack at some time, up 2% on the previous reporting period*.

* Note that the sample composition changes from wave to wave which explains why the trend for this question can be down as well as up.

Whether survey respondents outsource DDoS mitigation

54% of enterprises surveyed in November 2020 outsource their DDoS mitigation, in line with the previous reporting period.

Length of time taken to initiate DDoS mitigation

In November 2020, enterprises were most likely to take between 60 seconds and 5 minutes to initiate DDoS mitigation, in line with previous reporting periods.