Seventy one percent of respondents to a Glasswall survey say third-party risks from partner and supply chain interactions is a high concern.

The report, “Keeping the Enterprise Secure: A Tangled Web of Contradictions” noted that concerns about email risks from partners top the list of potential vulnerabilities – that includes both email with attached documents and email that may include dangerous links.

Highlights from the report include:

• 42 percent of respondents recognize that employees remain susceptible to phishing attacks and engage in risky behaviors. At the same time, 40 percent are completely reliant on employees as their last line of defense and 45 percent say they are mostly reliant. According to the findings, access to unlocked devices, poor password protection and the use of personal devices are cited as the most worrisome employee behaviors. Of that 42 percent, many report taking steps to try and overcome this challenge – providing employees with formal training, reading materials, and even using anti-phishing software to simulate attacks.
• 82 percent of respondents still see the network perimeter as the domain where they most need to keep investing in security. That includes the 57 percent who will continue to invest in perimeter defense along with post-breach detection.
• Only nine percent of respondents expressed complete confidence in their antivirus solutions. And yet, despite the low confidence expressed, 96% said they continue to invest in antivirus product. 
• The top 3 employee behaviors that security leaders feel create the most cyber risk: leaving devices unlocked when away from the desk, poor password protection habits and using unsecured personal devices for work.
• The top 3 types of cyber-attacks that concern security leaders: hackers spying within their IT infrastructure, systems failing / loss of network connectivity and ransomware.