A new survey from the SANS Institute reports that phishing is the biggest problem for organizations. Among the threats most commonly seen by respondents, phishing came in first, followed by spyware, and ransomware. However, SANS notes that phishing attacks cause the most damage–experienced by 40 percent of the survey participants.
In addition, one third of respondents saw malware-less threats within their organizations. These types of attacks rely on existing vulnerabilities in software and applications to gain a foothold within a network. For organizations that rely on traditional signature-based security solutions, these types of threats are hard to detect.