News

Research: employees have insufficient security knowledge

Security Parrot Editorial Team

Cybercriminals Increasingly Target Employees, But Security Knowledge Is Insufficient

Research by Fortinet shows that cybercriminals are increasingly carrying out targeted attacks on employees at companies. However, according to more than half of the decision makers, employees have insufficient security knowledge, which makes organizations vulnerable. Attention to good security awareness training is therefore important.
In the research, Fortinet finds that a large majority of the companies surveyed, 80 percent, signal that cybercriminals attack employees more directly. Think of malware, phishing and password attacks. People or employees are therefore still the weakest link.

Security Incidents on the Rise

In addition, 84 percent of the respondents indicate that they had to deal with one or more security incidents in 2022.

Security Awareness Programs in Place

According to the researchers, companies do a lot to prepare employees for possible cyber attacks. 85 percent indicate that they have a security awareness and training program. Security is also high on the agenda of most managements.
Yet more than half indicate that their employees still lack security knowledge. This gap is probably due to the effectiveness of existing security awareness programs, says Fortinet. Employees would still inconsistently apply best practices for good “cyber hygiene”. It is also possible that the knowledge acquired by employees during security awareness training is insufficiently refreshed.

Prioritizing Security Awareness and Training

According to Fortinet, the research shows that it is therefore important to train employees more on security awareness. “The research points to the pressing need to prioritize security awareness and security training. In this way, employees can form a first line of defense,” says regional director Netherlands Vincent Zeebregts of Fortinet in a comment.
The research highlights the importance of security awareness and training for organizations. Cybercriminals are increasingly targeting employees, making them the weakest link in the security chain. Companies are aware of this and have put security awareness and training programs in place. However, more than half of the respondents indicate that employees still lack security knowledge.
Organizations must prioritize security awareness and training to ensure that employees are well-equipped to protect themselves and the company from cyber attacks. Security awareness and training programs should be regularly refreshed and updated to ensure that employees are up to date with the latest security best practices. By doing so, employees can form a first line of defense against cybercriminals.

Weekly Updates For Our Loyal Readers!

Share this Article
Lost your password?