By pointing fingers and assigning blame in the aftermath of a data breach, enterprise organizations may suffer lower levels of incident reporting going forward.
The State of Ransomware 2022 and Beyond report from Gigamon explores how the cybersecurity threat landscape is evolving and the severity of the blame culture’ in cybersecurity is escalating.
According to global survey of IT and security leaders across the U.S., EMEA, and APAC, nearly one-third of organizations have suffered a ransomware attack enabled by a malicious insider, a threat seen as commonly as the accidental insider (35%). Furthermore, 59% of organizations believe ransomware has worsened in the last three months, with phishing (58%), malware/computer viruses (56%) and cloud applications (42%) cited as other common threat vectors.
Cybersecurity blame culture
The survey also revealed that 88% of global respondents believe there is a blame culture in the cybersecurity industry, with 38% in the US and 37% in Singapore seeing this tendency to point the finger when breaches occur as "heavily prevalent."
What's more, 94% of those who recognize the blame culture said that it could also be a deterrent to the speed of reporting an incident. To overcome this issue, 42% of organizations are calling for more transparency, as well as industry-wide collaboration (29%) and the need to provide chief information officers (CIOs)/chief information security officers (CISOs) with deep observability (22%).
For the full survey results, click here.