Nearly two-thirds of organizations (64%) believe their own organizations are potential targets for nation-state cyber-attacks.
That’s according to a survey taken by Tripwire of 215 attendees at the Black Hat USA 2015 security conference in Las Vegas this month.
Those expecting to be targeted make up the same percentage (64%) of respondents that said targeted attacks against their networks have increased over the last year by 20% or more. In all, a full 86% of the respondents have seen an increase of some manner in targeted attacks directed at their networks over the last year.
Worse, criminals are succeeding at it. A full 41% of respondents said they have seen a significant increase in the number of successful cyber-attacks in the last 12 months.
Despite the noticeable increase in attacks, less than half of the respondents (47%) said confidence in their organizations’ abilities to detect and respond to a cyber-attack rose in the last 12 months. This seems mostly due to a lack of good tools. More than half (53%) of respondents said they do not have the visibility necessary for accurate tracking of all the threats targeting their networks.
“Organizations know they are being actively targeted and that their current capabilities aren’t enough to consistently detect and defend against these attacks,” said Tim Erlin, director of IT security and risk strategy for Tripwire. “While new defensive technologies are constantly being developed organizations are hard pressed to deploy these new tools effectively. In many cases, these organizations would do well to evaluate their investment in foundational security controls. Although these controls are not new, they are the backbone of effective breach detection and response.”