 "cyber attack")
A survey conducted by CyberArk, a global identity security company, revealed that 91 per cent of Indian organisations surveyed by the agency have experienced ransomware attacks in the past year.
“More than nine in ten (91 per cent - up from 70 per cent in the 2022 report) of the organisations surveyed experienced ransomware attacks in the past year, and 55 per cent of affected organisations reported paying up twice or more to allow recovery, signaling that they were likely victims of double extortion campaigns,” the report claims.
A compounding of ‘cyber debt’
In its ‘CyberArk 2023 Identity Security Threat Landscape Report’ the company details how the tension between difficult economic conditions and the pace of technology innovation, including the evolution of artificial intelligence (AI), is influencing the growth of identity-led cybersecurity exposure.
“These issues have the potential to result in a compounding of ‘cyber debt’,” the report states highlighting a situation where investment in digital and cloud initiatives outpaces cybersecurity spend, creating a rapidly expanding and unsecured identity-centric attack surface.
Also Read
The findings of the report further elaborate on upcoming areas of identity and cybersecurity concern in 2023. It notes that "61 per cent of security professionals surveyed expect AI-enabled threats to affect their organisation in 2023, with AI-powered malware cited as the top concern."
“New environments create new identities and, consequently, compromising identities will remain the most preferred method for attackers to evade cyber defences and gain access to critical data and assets,” says Rohan Vaidya, regional director – India & SAARC at CyberArk.
“The identity-centric attack surface is one that is a priority to secure. To be best positioned to weather the current storm, organisations must adopt a risk-based strategy to secure critical assets, and initiate programmes to consolidate operations on a smaller set of trusted partners and solutions to build resilience,” he further stated.
What do Indian organisations think?
All (100 per cent) Indian organisations expect identity-related compromise in 2023, the report summarises. The reasons cited by the organisations range from economic-driven cutbacks, geopolitical factors, to cloud adoption and hybrid working. “A majority (84 per cent) say this will happen as part of a digital transformation initiative such as cloud adoption or legacy app migration.”
Fueling a new wave of insider threat concerns from – for example - disgruntled ex-staffers or exploitable leftover credentials, 80 per cent of organisations expect employee churn-driven cyber issues in 2023.
Moreover, 92 per cent of Indian organisations feel code/ malware injection into their software supply chain is one of the biggest security threats their organisations face.
As identities grow, security cracks become more visible
Identities -- both human and machine -- are at the heart of nearly all attacks, the report suggests. It notes that three-fourths of identities in Indian organisations require sensitive access to perform their roles. It found that critical areas of the IT environment are inadequately protected and pique the identity types that represent a significant risk.
75 per cent of organisations say highest-sensitivity employee access is not adequately secured and India ranks higher in number of machines that have sensitive access than humans as compared to global findings (42 per cent vs 38 per cent).
Credential access remains the number one risk for respondents (cited by 45 per cent), followed by defence evasion (34 per cent), execution (34 per cent), initial access (31 per cent) and privilege escalation (26 per cent).
Business-critical applications such as revenue-generating customer-facing applications, enterprise resource planning (ERP) and financial management software – were named as the area of greatest risk due to the unknown and unmanaged identities that access them (53 per cent). However, the report notes that 70 per cent do have identity security controls in place to secure business-critical apps.
Third parties – partners, consultants and service providers – are cited as the top riskiest human identity type (44 per cent).
“The organisational desire to drive ever-greater business efficiencies and innovation remains undiminished, even as cutbacks in staffing and macro-economic forces are creating significant pressures,” says Matt Cohen, chief executive officer, CyberArk.
“While attackers are constantly innovating, compromising identities remains the most effective way to circumvent cyber defences and access sensitive data and assets. Such profound risk puts the issue of “who and what to trust” at the forefront of efforts to prevent cyber debt from compounding, and to build long-term cyber resilience,” the CEO states.
