Rise in email impersonation attacks makes companies re-assess their security efforts

2 Mins read

Most organizations accept as true with they’ve skilled serious information breaches driven by way of e-mail impersonation inside the beyond one year – however, are not doing almost enough to save you destiny impersonation attacks, in keeping with a new look at carried out by using the Ponemon Institute.

Email impersonation attacksImage result for Rise in email impersonation attacks makes companies re-assess their security efforts

“With the dramatic upward push in impersonation attacks as a number one vector for cyber attacks, businesses are re-assessing the balance in their safety efforts,” said Alexander García-Tobar, CEO of Valimail. “While conventional strategies are true for filtering malicious content and blocking off spam, impersonation assaults can most effectively be stopped with email anti-impersonation answers. Individuals at all degrees of a corporation, which include customers and customers, are susceptible to phishing, fraud, and impersonation attacks.”

Key findings
eighty percent of respondents are very involved approximately the state in their businesses’ potential to lessen electronic mail-based totally threats
sixty-five percent are in all likelihood to put into effect an automatic DMARC enforcement solution if it stopped impersonation assaults
seventy-nine percent believed their companies had suffered an information breach inside the remaining 12 months
69 percent say their groups use anti-spam and anti-phishing filters as their number one protections despite the fact that the one’s mechanisms have been validated to be ineffective
sixty-one percent felt their corporations aren’t spending enough to save you electronic mail-primarily based cyber attacks, regardless of a experience of urgency among IT professionals
fifty-nine percent say their corporations have no longer created a security infrastructure or plan for e-mail protection.
The examine located that IT safety specialists had been most involved about e-mail as the source for impersonation assaults, inclusive of phishing and domain spoofing. The have a look at surveyed 650 IT safety specialists who’ve got a role in securing electronic mail applications and/or protecting give up-customers from email threats. The average employer within the take a look at has greater than 1,000 employees, six servers, and 15 cloud-primarily based offerings that ship email on their behalf – indicating they function with complex email environments.

As extra companies recognize and respond to electronic mail vulnerabilities, Valimail executives expect to see companies set up a layered defense that provides Domain-based totally Message Authentication, Reporting and Conformance (DMARC), DomainKeys Identified Mail (DKIM), and Sender Policy Framework (SPF) authentication standards to their existing comfy electronic mail gateway (SEG) technology and anti-phishing education.Image result for Rise in email impersonation attacks makes companies re-assess their security efforts

“Companies can reinforce their security in opposition to e mail fraud with automated answers and near that disconnect among email threats and preventive movement,” García-Tobar said.

“We have been surprised to see a big majority of companies who trust that they have had a breach related to e-mail but are not but embracing automatic anti-impersonation answers to protect themselves proactively,” said Dr. Larry Ponemon, chairman and founding father of Ponemon Institute. “Adopting fully computerized answers for DMARC enforcement that offer email authentication will assist groups get beforehand of the attackers and build agree with with their customers and give up customers.”

Originally posted 2018-08-06 17:47:51.

Related posts

Reddit suffers data breach despite using SMS-based 2FA

3 Mins read
Popular social news aggregation and discussion internet site Reddit has suffered a breach. The attacker broke into a number of its structures…

Facebook CSO Alex Stamos leaves to join Stanford Uni

2 Mins read
Facebook Chief Security Officer Alex Stamos has introduced that he’s leaving the organization on August 17 and will be joining Stanford University…

HP plugs critical RCE flaws in InkJet printers

1 Mins read
HP has plugged important vulnerabilities (CVE-2018-5924, CVE-2018-5925) affecting a lot of its InkJet printers and is urging customers to put in force…