21 percent of S&P 500 companies reported breaches in 2023

No Comments

According to the latest threat research from SecurityScorecard, 21 percent of S&P 500 companies experienced breaches in 2023.

The report shows that 25 percent of these breaches impacted financial services and insurance companies. Financial institutions have some of the most robust security programs because they have substantial money and assets. But the interconnected nature of the financial sector means that compromising one institution or commonly used product can lead to broader impacts across the entire industry.

Dr. Aleksandr Yampolskiy, CEO and co-founder of SecurityScorecard, says, "Regulatory pressure continues to grow, and companies need a unified definition of cybersecurity due diligence with clear metrics. Just as credit scores standardized the financial world, companies need a universal framework to measure cybersecurity risk and define materiality."

Among other findings 52 percent of companies had exposed personal information, leading to greater risk of social engineering attacks. Indeed social engineering is the most common risk factor (77 percent) for which S&P 500 companies receive their lowest scores. The exposure of employee information is a source of this vulnerability to social engineering attacks and was also the issue having the most negative impact on companies' scores.

Ransomware demands continue to grow too, now often reaching the eight figure range. S&P 500 companies are seen as particularly valuable targets based on their stock market value and demand accordingly high ransoms. Attackers know that bigger targets are typically capable of paying high demands.

The supply chain also represents a risk, SecurityScorecard research finds that 98 percent of companies have a relationship with a third party that has been breached.

"Companies are prioritizing vendor oversight after major supply-chain cyber attacks have affected thousands of businesses and breached data on millions of customers," says Ryan Sherstobitoff, senior vice president of threat research and intelligence. "The strength of a company's cybersecurity is directly linked to the security measures of even its smallest vendors."

The full report is available from the SecurityScorecard site.

Image credit: photonphoto/depositphotos.com

No Comments
Got News? Contact Us

Recent Headlines

Microsoft eases its foot off the accelerator for Copilot development in Windows 11

Beyond the snapshot: Why continuous risk assessment is essential in today's threat landscape

TUXEDO Stellaris 17 (Gen6): A high-performance portable Linux workstation

New solution helps companies prepare for 90-day TLS standard

Get 'Enterprise Transformation to AI and the Metaverse' (worth $59.99) for FREE

Best Windows apps this week

All you wanted to know about passkeys but were afraid to ask

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.1

78 Comments

The stunning Windows 13 -- yes, 13! -- is the Microsoft operating system we want

24 Comments

Microsoft 'improves' Windows 11 by bringing ads to the Start menu in the US

21 Comments

Windows 11 slammed for its 'comically bad' performance even on high-end hardware

18 Comments

Microsoft is up to its old tricks yet again -- Windows 10 users harassed with full-screen Windows 11 upgrade warnings

18 Comments

Microsoft releases preview version of Office 2024 for Windows and macOS -- download it now!

17 Comments

EndeavourOS ARM discontinued: A huge loss for the Linux community

9 Comments

Microsoft is actively blocking Windows 11 tweaking tools

8 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.