Email security threats are pervasive, 87% said their company faced an email-based security threat in the past year.
Ransomware is a concern, more than 1/3 said they have already experienced an attack.
Phishing simulation and social-engineering detection were identified as the most beneficial email-security training capabilities.
Barracuda Networks, Inc., a leading provider of cloud-enabled security and data protection solutions, today announced key findings from a new global research report. Commissioned by Barracuda, the research surveyed global IT stakeholders to capture their experiences and attitudes about the current state of email security to better understand the email security approach of today's organizations.
The study includes responses from 634 executives, individual contributors and team managers serving in IT-security roles in the Americas, EMEA and APAC. Companies surveyed include small, mid-sized and enterprise businesses in technology, financial services, education, healthcare, manufacturing, government, telecommunication, retail and other industries. A wide range of questions captured hard data about ransomware, phishing and other threats, as well as the related business impacts, prevention efforts and email-security capabilities most beneficial for stopping attacks.
Overall, the study indicates that email threats continue to increase and the impact on staff and productivity is escalating. The vast majority of IT professionals believe that end-user training and awareness programs are a vital pre-requisite to help mitigate threats and improve email security. Highlights include:
Email security threats are pervasive.
87% of IT security professional said their company faced an attempted email-based security threat in the past year.
More than 90% said email archiving is critical, citing a variety of business benefits.
Maintaining an audit trail for compliance purposes, investigating suspicious activity and cutting costs for e-discovery requests were the top reasons.
Larger businesses are more concerned about Office 365 email security; smaller businesses are less concerned. While the differences are fairly minor, this could be because larger companies have more data at risk in Office 365, due to having broader deployments rolled out that include SharePoint, OneDrive and other applications.
There's a strong consensus of opinions about employee training and its effect on email-based security.
100% said end-user training is important to prevent attacks!
Phishing simulation and social-engineering detection were identified as the most beneficial email-security capabilities.
98% said there are better ways to train employees so than traditional classroom-style education, including customized examples that are relevant to an employee's department and role, unscheduled simulations of typical attacks, training modules that can be done at the employee's convenience, and rewards for taking the right actions.
Email threats continue to become more targeted, making a multi-layered approach critical in successfully protecting targeted employees, applications, and data. Barracuda offers a broad solution against email-borne targeted attacks and social engineering. For more information, please visit: https://www.barracuda.com/products/email_protection.
AboutBarracuda Networks, Inc. Barracuda simplifies IT with cloud-enabled solutions that empower customers to protect their networks, applications and data, regardless of where they reside. These powerful, easy-to-use and affordable solutions are trusted by more than 150,000 organizations worldwide and are delivered in appliance, virtual appliance, cloud and hybrid deployment configurations. Barracuda's customer-centric business model focuses on delivering high-value, subscription-based IT solutions that provide end-to-end network and data protection. For additional information, please visit barracuda.com.
Barracuda Networks, Barracuda, and the Barracuda Networks logo are registered trademarks of Barracuda Networks, Inc. in the US and other countries.