Friday, December 1, 2023

CISOs are More Concerned with Lawsuits, and API Security (Survey Report)

Digital initiatives play a crucial role in business today; they bring new business opportunities, fostered creative partnerships, and deliver new customer conveniences across multiple industries.

But all these innovations pose the biggest challenges for CISOs/CSOs, and they don’t want companies to sacrifice security for speed.

According to the Survey report share with Cyber Security news by Salt Security’s “State of the CISO 2023,” mentions that nearly 90% of CISOs say Digital Transformation Introduces Unforeseen Risks.

Challenges from the Rapid Digital Transformation

The effects of digitization are felt most keenly by businesses in the financial services and healthcare sectors.

Following are the challenges Digital economy provides;

  • Lack of qualified cybersecurity talent to address new needs (40%)
  • Inadequate adoption of software (36%)
  • The complexity of distributed technology environments (35%)
  • Increased compliance and regulatory requirements (35%)
  • Difficulties justifying the cost of security investments (34%)
  • Getting stakeholder support for security initiatives (31%)

While 37% of CISOs worldwide “very much agree” that digital services increase risk, this number rises to 43% among financial services CISOs and 47% among healthcare, reads the report.

Almost all CSOs and CISOs (99%) said they face personal & professional challenges from the rapid digital transformation.

Most CSOs (48%) are worried about being sued due to a breach, followed by increased risk and personal accountability (45%).

After ex-Uber employee Joseph Sullivan’s conviction for covering up a 2016 data breach, security experts have become fearful of being held personally liable for security mistakes.

CISOs identify supply chain or third-party vendors (38%), API adoption (37%), and cloud adoption (35%) as the top three security control gaps resulting from their digital initiatives.

While AI has been identified as a significant concern by CISOs worldwide, other major problems include the state of the economy and international politics.

Eighty-two percent of CISOs say their security spending is higher than two years ago.

The spending power of CISOs has dropped as a percentage of revenue over the past two years, even though the revenue of these same organizations has increased by 87%.

In addition to the trends impacting CISOs’ role, AI is a top issue of concern as cyber attackers are already using AI to conduct sophisticated attacks.

Manage and Secure Your Endpoints Efficiently – Free Download


Latest articles

Cactus Ransomware Exploiting Qlik Sense code execution Vulnerability

A new Cactus Ransomware was exploited in the code execution vulnerability to Qlik Sense...

Hackers Bypass Antivirus with ScrubCrypt Tool to Install RedLine Malware

The ScrubCrypt obfuscation tool has been discovered to be utilized in attacks to disseminate the RedLine Stealer...

Hotel’s Hacked Logins Let Attacker Steal Guest Credit Cards

According to a recent report by Secureworks, a well-planned and advanced phishing attack was...

Critical Zoom Vulnerability Let Attackers Take Over Meetings

Zoom, the most widely used video conferencing platform has been discovered with a critical...

Hackers Using Weaponized Invoice to Deliver LUMMA Malware

Hackers use weaponized invoices to exploit trust in financial transactions, embedding malware or malicious...

US-Seized Crypto Currency Mixer Used by North Korean Lazarus Hackers

The U.S. Treasury Department sanctioned the famous cryptocurrency mixer Sinbad after it was claimed...

CISA Warns Hackers Exploiting Wastewater Systems Logic Controllers

In a disconcerting turn of events, cyber threat actors have set their sights on...

API Attack Simulation Webinar

Live API Attack Simulation

In the upcoming webinar, Karthik Krishnamoorthy, CTO and Vivek Gopalan, VP of Products at Indusface demonstrate how APIs could be hacked.The session will cover:an exploit of OWASP API Top 10 vulnerability, a brute force account take-over (ATO) attack on API, a DDoS attack on an API, how a WAAP could bolster security over an API gateway

Related Articles