Fortinet Research Finds Over 80% of Organizations Experience Cyberattacks that Target Employees
New research underscores importance of effective cyber awareness training for employees to decrease cyber risks, with more than 50% of leaders indicating their employees lack proper knowledge
John Maddison, EVP of Products and CMO at Fortinet
“Our 2023 Security Awareness and Training Global Research Brief underscores the crucial role employees play in preventing cyberattacks. It also highlights the critical need for organizations to prioritize security awareness and training services to ensure employees serve as the first line of defense.”
News Summary
Fortinet® (NASDAQ: FTNT), the global cybersecurity leader driving the convergence of networking and security, today released its 2023 Security Awareness and Training Global Research Brief, highlighting the importance of organizations building a cyber-aware workforce to strengthen their security posture and reduce cyberattacks.
Enabling Employees to Protect their Organization’s Most Critical Digital Assets
Organizations are grappling with an increasingly sophisticated threat landscape. The most recent Global Threat Landscape Report from Fortinet’s FortiGuard Labs found that ransomware threats remain at peak levels with no evidence of slowing down globally. At the same time, Fortinet’s 2023 Cybersecurity Skills Gap Global Report found that 84% of organizations experienced one or more breaches in 2022.
And now the latest research from Fortinet’s 2023 Security Awareness and Training Global Research Brief reveals that more than 90% of leaders believe that increased employee cybersecurity awareness would help decrease the occurrence of cyberattacks. As organizations face increasing cyber risks, the research highlights the important role of employees in serving as an organization’s first line of defense in protecting their organization from cybercrime. Additional key findings from Fortinet’s research include:
- Employees are being targeted by cyber criminals. The research found that 81% of organizations faced malware, phishing, and password attacks last year which mainly were targeted at users. This underscores that employees can be an organization’s weakest point or one of its most powerful defenses.
- Having an effective training program is key to instilling good cyber hygiene in employees. Eighty-five percent of leaders say their organization has a security awareness and training program, yet more than 50% believe their employees still lack cybersecurity knowledge. This gap suggests the training programs in place may not be as effective as they could be, resulting in inconsistency in how employees apply good cyber hygiene practices or that training is not reinforced sufficiently.
- Cybersecurity is increasingly becoming a priority for the Board of Directors. The report found that 93% of organizations indicated their board of directors are asking about the organizations cyber defenses and strategy.
Building a Cyber Aware Workforce with Fortinet’s Security Awareness and Training Service
For organizations looking to implement cybersecurity awareness training for their employees or those evaluating the effectiveness of their current program, Fortinet offers its Security Awareness and Training service to develop a cyber-aware workforce. Designed by the Fortinet Training Institute’s world-class trainers, the service covers a broad range of topics in a practical way and reinforces learnings with reminders and checks, helping to improve training outcomes. Organizations deploying the service also have access to a dashboard and reporting to address cyber insurance and compliance needs.
The service uniquely leverages FortiGuard Labs threat intelligence, providing frequently updated training informed by developments observed across the threat landscape. Additionally, the service aligns with the National Institute of Standards and Technology (NIST) guidelines – NIST 800-50 and NIST 800-16 – to further ensure key topics are covered including, information security, data privacy, physical security, password protection and internet security.
Fortinet has also tailored this service for educators and made it available for free to school districts and systems across the United States and local education authorities in the United Kingdom, with plans to continue increasing access globally.
About the Fortinet Cyber Awareness Survey:
- The survey was conducted among more than 1,800 IT and/or cybersecurity decision-makers from 29 different locations.
- Survey respondents came from a range of industries, including technology (21%), manufacturing (16%), and financial services (13%).
Additional Resources
Fortinet (NASDAQ: FTNT) is a driving force in the evolution of cybersecurity and the convergence of networking and security. Our mission is to secure people, devices, and data everywhere, and today we deliver cybersecurity everywhere you need it with the largest integrated portfolio of over 50 enterprise-grade products. Well over half a million customers trust Fortinet's solutions, which are among the most deployed, most patented, and most validated in the industry. The Fortinet Training Institute, one of the largest and broadest training programs in the industry, is dedicated to making cybersecurity training and new career opportunities available to everyone. FortiGuard Labs, Fortinet’s elite threat intelligence and research organization, develops and utilizes leading-edge machine learning and AI technologies to provide customers with timely and consistently top-rated protection and actionable threat intelligence. Learn more at https://www.fortinet.com, the Fortinet Blog, and FortiGuard Labs.
Copyright © 2023 Fortinet, Inc. All rights reserved. The symbols ® and ™ denote respectively federally registered trademarks and common law trademarks of Fortinet, Inc., its subsidiaries and affiliates. Fortinet's trademarks include, but are not limited to, the following: Fortinet, FortiGate, FortiGuard, FortiCare, FortiManager, FortiAnalyzer, FortiOS, FortiADC, FortiAP, FortiAppMonitor, FortiASIC, FortiAuthenticator, FortiBridge, FortiCache, FortiCamera, FortiCASB, FortiClient, FortiCloud, FortiConnect, FortiController, FortiConverter, FortiDB, FortiDDoS, FortiExplorer, FortiExtender, FortiFone, FortiCarrier, FortiHypervisor, FortiIsolator, FortiMail, FortiMonitor, FortiNAC, FortiPlanner, FortiPortal, FortiPresence , FortiProxy, FortiRecorder, FortiSandbox, FortiSIEM, FortiSwitch, FortiTester, FortiToken, FortiVoice, FortiWAN, FortiWeb, FortiWiFi, FortiWLC, FortiWLCOS and FortiWLM.
Other trademarks belong to their respective owners. Fortinet has not independently verified statements or certifications herein attributed to third parties and Fortinet does not independently endorse such statements. Notwithstanding anything to the contrary herein, nothing herein constitutes a warranty, guarantee, contract, binding specification or other binding commitment by Fortinet or any indication of intent related to a binding commitment, and performance and other specification information herein may be unique to certain environments. This news release may contain forward-looking statements that involve uncertainties and assumptions, such as statements regarding technology releases among others. Changes of circumstances, product release delays, or other risks as stated in our filings with the Securities and Exchange Commission, located at www.sec.gov, may cause results to differ materially from those expressed or implied in this press release. If the uncertainties materialize or the assumptions prove incorrect, results may differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements. Fortinet assumes no obligation to update any forward-looking statements, and expressly disclaims any obligation to update these forward-looking statements.