SOURCE: Glasswall

Glasswall

May 03, 2017 08:00 ET

Glasswall Global Email Security Survey Finds that Majority of Workers Blindly Open All Email Attachments

Despite Pervasive Social Engineering, 58 Percent of Respondents Open Attachments from Unknown Senders, Exposing Organizations to Malicious Attacks and Data Theft

LONDON, UNITED KINGDOM--(Marketwired - May 3, 2017) -  Glasswall Solutions, the pioneer of Content, Disarm and Reconstruct technology, today announced the results of its global email security survey revealing that the vast majority (82 percent) of respondents usually or always open email attachments if they appear to be from a known contact, despite the prevalence of well-known sophisticated social engineering attacks. Of these respondents, 44 percent open these email attachments consistently every time they receive one, leaving organizations highly vulnerable to data breaches sourced to malicious attachments.

Altogether, the survey examined 1,000 office workers in medium and large-scale businesses across the U.S. to determine their email security awareness, particularly regarding known and unknown attachments, and related behaviors around best practices. Among other things, the research demonstrated how lax approaches to popular threat vectors such as email attachments, inadequate threat-awareness, poor work-practices and out-of-date technology, are exposing organizations to hacking, ransomware and zero-day attacks.

"Employees need to trust their emails to get on with their work, but with 94 percent of targeted cyber-attacks now beginning with malicious code hidden in an email attachment, the security of major businesses should no longer be the responsibility of individual office-workers," said Greg Sim, CEO of Glasswall Solutions. "Conventional antivirus and sandboxing solutions are no longer effective and relying on the vigilance of employees clearly leaves a business open to devastating cyber-attacks that will siphon off precious data or hold the business to ransom."

A large majority of workers could at least identify characteristics of a phishing attack, with 76 percent acknowledging that they had received suspicious attachments. However, the survey also found that 58 percent of respondents usually opened email attachments from unknown senders, while 62 percent didn't check email attachments from unknown sources, leaving businesses open to breaches from documents carrying malicious exploits hidden inside common file-types such as Word, Excel, PDFs and more.

"This research confirms anecdotal evidence that, although security awareness campaigns have their place, all too often they fail to equip workers with effective strategies for protecting data and systems," said professor Andrew Martin at the University of Oxford. "Technology that's fit for purpose reduces risks without placing added burdens on those simply trying to do their jobs."

This implicit trust in both familiar and unknown emails stands in direct contrast to the scale of threats delivered via email. Despite thousands of attacks launched every year against businesses, only 33 percent of respondents maintained that they had been victim of a cyber-attack. And almost a quarter (24 percent) said they did not know if they had been attacked or not.

Additional survey findings include:

  • More than half (55 percent) said they sent or received at least 11 documents via email every working day, meaning there are 2,585 potentially malicious files in circulation from a single employee each year.
  • One in five (20 percent) said the business they work for has no policy on how to handle email attachments, or they have not been made aware of it.
  • Only a tiny percentage (5.5 percent) thought "other" types of attachments were suspicious, which included various types prize-winning links or emails with multiple addressees.
  • 15 percent said they always or usually trust email attachments sent by people they have never heard of.
  • Only two people named Word documents as being suspicious and only two said they regarded "spreadsheets" as a potential threat, despite the continuing prevalence of these file-types in the perpetration of successful cyber-attacks.
  • 58 percent said they would feel safer from cyber-crime if their employer had the right technology to protect them.

To access the full report, please visit: https://www.glasswallsolutions.com/email-security-report

About Glasswall Solutions: Glasswall Solutions has offices in London and Arizona and provides organizations with unique protection against advanced and zero-day targeted cyber threats in documents through its innovative, groundbreaking security technology. The forensic data that Glasswall provides delivers an essential insight into threats already within networks and through its email security platform and APU provides fresh insight into unknown and as yet undetected cyber threats. With Glasswall, key cyber security decision-makers are better equipped with actionable intelligence to immediately act, respond and set compliance standards to meet crucial data security requirements.
http://www.glasswallsolutions.com/

Contact Information