Barracuda’s new Cybernomics 101 report uncovers the financial forces driving cyberattacks
January 2024 by Barracuda Networks
Barracuda Networks, Inc. published its Cybernomics 101 report, which examines the financial forces and profit motives behind cyberattacks. The new report reveals the average annual cost of responding to compromises exceeded $5 million. The report also raises the alarm over hackers exploring how they can use generative AI (GenAI) technology to increase the volume, sophistication, and effectiveness of their attacks. 50% of respondents believe AI will enable hackers to launch more attacks. The survey also identified that 71% of respondents had experienced a ransomware attack over the last year, and 61% paid the ransom.
Barracuda commissioned independent research firm Ponemon Institute to poll 1,917 IT security practitioners who manage their organization’s IT security functions or activities. They represent companies with 100 to 5,000 employees across various industries in the U.S. and a number of EMEA and APAC countries.
The report offers insight from survey respondents who identified as ethical hackers on the most widely used attack vectors and which of these might offer the greatest return for attackers.
The research identifies the behaviors and proven security measures implemented by ’High Performers’ that can serve as models for success. The report presents best practices that will help any organization become more effective in identifying, containing, and recovering from attacks. They include adopting a platform approach to security rather than relying on a collection of disparate individual security tools or solutions, implementing privileged access rights to ensure that sensitive data remains accessible only to authorized individuals, and creating (and regularly rehearsing) a security incident response plan.
"While the Cybernomics 101 research underscores the harsh reality of suffering a data breach, it also underscores that organizations are not powerless," said Fleming Shi, CTO, Barracuda. "Proactive monitoring and attack detection to prevent progression to more severe stages like data exfiltration or ransomware is key. By preparing for these scenarios today, organizations can significantly reduce the impact and cost of these incidents."