It’s Time to Prioritize Security Awareness Training

The latest data reveals ransomware’s pervasiveness throughout every industry, size, and type of organization, confirming its place as the number one cyberthreat today.

New data from Fortinet’s 2021 Ransomware Survey Report shows just how prominent ransomware attacks are, and how organizations aren’t making the connection between the cyberattack and their users. First, a bit of data on the state of ransomware attacks. According to Fortinet:

• 67% of organizations have been a target of ransomware attacks
• 16% have been hit three or more times
• 96% feel at least moderately prepared (despite the percentage of attacks indicating otherwise)

So, organizations should take a look at why they are being hit so much, right?

• Nearly a third (32%) say there’s a lack of security awareness training
• 61% have user training – but as part of an incident response plan (after and not before)
• 58% of ransomware attacks in North America start with phishing a user

And most importantly:

• In the list of protection and defensive measures essential to secure against ransomware, nowhere to be found is security awareness training:

Source: Fortinet

We all need to do our part in preventing ransomware attacks. And that starts by building an effective ransomware strategy, including implementing proactive measures to educate your employees and stop cyberattacks.

It’s an action every organization needs to prioritize. Security awareness training can help create a forward-thinking security stance designed to prevent ransomware attacks that start with phishing as the initial attack vector. Learn more about the benefits of security awareness training now.

Information used in this article was provided by our partners at KnowBe4, and the article “Fortinet Ransomware Survey Shows Many Organizations Unprepared” from Fortinet.