Adrian Johnson
TLDR:
- Most companies are more afraid of unknown cybersecurity threats than known flaws and attacks.
- Survey from Critical Start finds that 86% of cybersecurity professionals consider unknown risks a top security concern.
In a recent study conducted by security monitoring specialist Critical Start, it was found that most companies are more afraid of unseen cybersecurity threats than known exploits and attackers. The survey, which polled 1,000 cybersecurity professionals across various sectors, revealed that network defenders are more likely to invest resources in third-party services that offer defenses against threats that are not yet widely known. The concern over unknown risks has increased by 17 percentage points since the previous study conducted in 2023.
According to the report, about 99% of organizations are planning to outsource segments of their cyber risk reduction workstreams to security service providers within the next two years. This trend is being driven by the recognition that unknown risks pose a serious concern, and outsourcing can provide the expertise and resources needed to effectively manage these risks while allowing internal resources to focus on implementing a broader security strategy.
One of the key findings of the survey was the lack of network visibility, leading to concerns about unknown threats stemming from devices and endpoints on the network that have not been properly accounted for. Critical Start emphasized the importance of continuous monitoring and response capabilities, such as their managed detection and response (MDR) services, to better equip companies to address emerging threats and attack techniques.
The effectiveness of an MDR system relies heavily on the threat signals it receives, which highlights the importance of feeding proper data and analysis from external sources including security frameworks and human analysts. While companies may be apprehensive about unknown threats, investing in comprehensive cybersecurity measures and utilizing services like MDR can help mitigate risks and enhance overall security posture.
