The landscape of cybersecurity is ever-evolving, driven by both advanced technologies and increasingly sophisticated cyber threats. Kaseya’s 2024 Cybersecurity Survey Report provides crucial insights into the latest cybersecurity challenges, industry responses, and the role of emerging technologies like artificial intelligence (AI).
Below, we explore key findings from this report, shedding light on the progress companies are making and the persistent hurdles they face in safeguarding their digital environments.
Fewer companies are paying ransoms when faced with ransomware attacks. Only 11% of businesses opted to pay attackers, indicating a shift toward resilience over surrender. This shift reflects increased investments in robust backup and recovery solutions that reduce reliance on ransom payments.
Notably, 44% of organisations successfully restored data from backups without resorting to payment. This underscores the effectiveness of proactive measures in mitigating ransomware damage.
Despite these advancements, ransomware remains a persistent concern. Approximately 15% of respondents identified it as a key issue, alongside other critical threats like phishing (50%) and business email compromise (28%).
The survey revealed a substantial drop in supply chain attacks. Only 19% of organisations experienced such incidents in 2024, compared to 61% in 2023. This decline suggests that companies are strengthening their supply chain defences.
This is a positive development because third-party vulnerabilities can significantly disrupt business operations. Contributing to this improvement is the ongoing investment in advanced security solutions, such as file backup (70%) and security awareness training (69%).
These tools help organisations effectively monitor, detect, and address vulnerabilities across the supply chain.
Human behaviour continues to be a major cybersecurity vulnerability. A significant 80% of respondents attributed their cybersecurity issues to inadequate user training or poor practices.
The report highlights a rise in concerns about user behaviour. Now, 45% of organisations view user behaviour as a top cause of cybersecurity challenges, up from 15% in 2023.
Poor user practices and a lack of cybersecurity training emerged as leading causes of security issues, with 44% of respondents attributing challenges to insufficient training. These findings underscore the need to prioritise user education as a vital defence strategy.
Improved user practices could substantially reduce incidents stemming from human error.
Organisations are steadily improving their cybersecurity maturity by investing in advanced tools and services. These investments correlate with reduced incident costs and less downtime.
Tools like Endpoint Detection and Response (EDR), antivirus software, and security awareness training (utilised by 69% of organisations) are helping companies monitor, detect, and respond to threats effectively.
This proactive adoption of sophisticated tools has contributed to a decrease in the financial impact of cybersecurity incidents. Only 5% of respondents reported damages between $250,000 and $500,000 in 2024, down from 25% in 2023.
Recovery timeframes are also improving. 29% of affected organisations experienced only a day or less of downtime, while 27% reported no downtime at all.
With 87% of companies planning to maintain or increase their IT security budgets, ongoing investment in security solutions remains a critical factor driving overall cybersecurity maturity.
AI has the potential to strengthen cybersecurity, but survey responses reveal mixed opinions.
53% of IT professionals believe AI will enhance security. However, 34% remain uncertain about its benefits, highlighting a need for greater education and clarity on AI’s capabilities and limitations.
Nearly one-third of surveyed IT professionals expressed scepticism about AI’s potential to impact their organisation’s security. This indicates that companies are still evaluating the practicality and reliability of AI-driven solutions.
Despite progress in resilience and maturity, certain risks remain top concerns for cybersecurity teams. Phishing, ransomware, and user-related vulnerabilities continue to challenge organisational security.
Phishing alone was identified as a primary issue by 50% of respondents. This sustained focus on persistent threats highlights the need for vigilant, ongoing security measures to mitigate potential damages effectively.
The 2024 Cybersecurity Survey Report underscores both progress and ongoing challenges within cybersecurity. While companies are becoming more resilient and increasingly confident in their defences, the survey reveals areas requiring attention, particularly around user behaviour and the strategic adoption of emerging technologies like AI.
As cybersecurity threats continue to evolve, so must the industry’s approach. Organisations must balance proactive technology investments with strong user training to navigate this complex landscape.
For a comprehensive look at these findings, download the full Kaseya Cybersecurity Survey Report
If you’re ready to strengthen your cybersecurity strategy or have specific concerns to address, our team of experts is here to help. Contact us today to discuss how we can support your organisation in achieving a robust, resilient security posture that safeguards your operations and ensures peace of mind in an increasingly complex digital landscape.
