Network security incidents predominate: Target 88% of companies

During 2024, the most common type of security incident experienced by companies involved network protection, according to the latest Kaspersky IT Security Economics report. Nearly 9 in 10 (88%) enterprises faced attackers attempting to infiltrate their networks, while more than 60% reported incidents where malicious actors executed malicious code within their networks or attempted to communicate with compromised systems and gain control of them.

Network security threats remain the biggest concern for businesses

Network security threats aim to exploit system vulnerabilities, infiltrating corporate networks and damaging sensitive data, applications and operations. When a cybercriminal identifies a weak point in the system, they use it to gain unauthorised access and install malware, spyware or other harmful applications. These weak points also act as windows for social engineering attacks, making it easier to target victims.

With more and more data being created, stored and transferred, the potential for cyber-attacks that compromise sensitive information also increases. The increasing sophistication of cyber threats is a key contributing factor to the prevalence of network security issues. Cybercriminals are constantly developing new tactics and techniques to circumvent traditional security measures, leaving businesses unable to monitor them. From phishing and ransomware attacks to DDoS attacks and APT-type threats, there are many ways cybercriminals can exploit vulnerabilities in a company's network.

In addition, the growth of teleworking and BYOD ('bring your own device') policies has created additional challenges for network security. As employees access corporate data from various locations and devices, the risk of security breaches increases. This, combined with a lack of proper security protocols and employee training, creates an environment of vulnerability that is conducive to cyber-attacks

The human factor problem

Human error is another critical contributing factor to security incidents. 42% of companies reported incidents where their own employees, either knowingly or unintentionally, aided attackers with their actions or omissions, with the majority of these incidents recorded in medium and small businesses. Large organisations experienced this problem with much less frequency.

Mistakes or negligence by employees, either due to ignorance of security or insufficient training, are major causes of cybersecurity breaches and data leaks in organisations. Phishing attacks, where employees inadvertently click on malicious links or provide sensitive information to fraudsters, are a common threat. Threats originating from within the company, where employees intentionally or unintentionally leak confidential data, can also seriously compromise company security. The consequences of employee negligence in cybersecurity can be severe, as data breaches often result in financial losses, damage to the company's reputation and legal consequences. In extreme cases, companies may face fines and legal repercussions for failing to adequately protect sensitive information.

Small and medium-sized businesses are often more vulnerable to data breaches caused by their own employees, compared to large companies that have more resources to invest in strong cybersecurity measures and employee training. Small and medium-sized businesses may lack the necessary infrastructure and knowledge to adequately protect their sensitive information, which makes them an easy target for cybercriminals looking for weak points in the security chain.

Recommendations for better protection

To reduce the risk of cyberattacks caused by human error, companies should take steps to raise awareness of cyber threats among their employees and invest in comprehensive cybersecurity training programmes.

Regular security audits and threat monitoring can help identify weak points and address them before they become exploitable by cybercriminals. Targeted solutions, such as those provided by the Kaspersky Next product line, can protect company assets in real-time, provide threat visibility, investigation and response capabilities through EDR and XDR for organizations of all sizes and industries.

The combination of technological solutions and employee prevention training is essential to protect a company's data and reputation in the digital world.