69% of Targeted Attacks in India Focus on Large Enterprises

Bad guys are plotting for months before pulling off huge heists –instead of executing quick hits with smaller rewards. Plus attackers are unrelenting in their focus on large enterprises with over 69 percent or more than 2/3rds of the targeted attacks in Indiacarried out on them, says a report by Symantec .

“One mega breach can be worth 50 smaller attacks,” said Tarun Kaura, Director, Technology Sales at Symantec India. “While the level of sophistication continues to grow among attackers, what was surprising last year was their willingness to be a lot more patient –waiting to strike until the reward is bigger and better.”

Globally, there was a 62 percent increase in the number of data breaches from the previous year, resulting in more than 552 million identities exposed –proving cybercrime remains a real and damaging threat to consumers and businesses alike.

Each of the eight top data breaches in 2013 resulted in the loss of tens of millions of data records

The size and scope of breaches is exploding, putting the trust and reputation of businesses at risk, and increasingly compromising consumers’ personal information – from credit card numbers and medical records to passwords and bank account details. Each of the eight top data breaches in 2013 resulted in the loss of tens of millions of data records. By comparison, 2012 only had a single data breach reach that threshold.

“Nothing breeds success like success –especially if you’re a cybercriminal,” added Kaura. “The potential for huge paydays means large-scale attacks are here to stay. Companies of all sizes need to re-examine, re-think and possibly re-architect their security posture.”

Globally targeted attacks were up 91 percent and lasted an average of three times longer compared to 2012 

Globally targeted attacks were up 91 percent and lasted an average of three times longer compared to 2012.  InIndia, cyber criminals are unrelenting in their focus on large enterprises with a staggering 69 percent targeted attacks carried out against them. Despite stepping up their information security measures, businesses inIndiacontinue to be an attractive target for cybercriminals.

Furthermore, within organizations, support functions with access to critical data emerged as the strongest target for attackers globally. Personal assistants and those working in public relations were the two most targeted professions – cybercriminals use them as a stepping stone toward higher-profile targets like celebrities or business executives.

In India, nearly four in 10 attacks were carried out on non-traditional services industries like hospitality, business and personal services

In India, nearly four in 10 attacks were carried out on non-traditional services industries like hospitality, business and personal services. This was followed by attacks on manufacturing, finance and insurance.

On the other hand, globally, the top data targeted during a breach had moved from just financial information to basic information like names, addresses, email addresses and government ID proofs etc. Interestingly, while non-traditional, service- centric organizations handle such information in large numbers, they may often lack adequate security practices and infrastructure making them easy targets for such attacks.  

ADIDAS