By focusing on their employees, organizations can better protect themselves against ever-evolving cyber threats, according to the Kaseya Cybersecurity Survey Report 2024: Navigating the New Frontier of Cyber Challenges.
“The human element continues to be the weakest link in cybersecurity,” the report states. “An alarming 80% of respondents named a lack of training or bad user behavior as one of the biggest causes of cybersecurity challenges.”
While businesses may be investing in advanced security tools, they are not adequately addressing the human factors that contribute to security breaches.
One of the reports’ revelations is that poor user practices and gullibility as a cause of cybersecurity issues has tripled, rising from 15% in 2023 to 45% in 2024.
Phishing remains a top issue for companies, with 50% of respondents reporting it as a significant concern in the past 12 months.
When asked what the gateway to a successful attack on their company in the next 12 months might be, respondents answered “human error” the most. The report highlights “a growing awareness of social engineering and distraction as major threat vectors.”
In addition to user behavior, the report identifies a lack of end-user cybersecurity training as a significant issue. The percentage of organizations citing this as a root cause of cybersecurity problems has increased by 16 percentage points, from 28% in 2023 to 44% in 2024.
This underscores the importance of investing in comprehensive training programs to equip employees with the knowledge and skills needed to protect against cyber threats.
By equipping employees with the skills to identify and respond appropriately to these threats, organizations have a much better chance at avoiding human error. Training sessions not only mitigate the risks but also foster a culture of vigilance.