As the world adapts to GDPR and puts more attention on personal privacy and security, Europe’s top information security professionals still have doubts about the industry’s ability to protect critical infrastructure, corporate networks, and personal information.
Black Hat Europe’s new research report entitled, Europe’s Cybersecurity Challenges, details the thoughts that are keeping Europe’s top information security professionals awake at night. The report includes new insights directly from more than 130 survey respondents and spans topics related to GDPR, personal privacy, current industry challenges, and what Europeans should anticipate in the years to come.
Is GDPR Worth the Effort?
While respondents noted that the General Data Protection Regulation (GDPR), implemented in May, is top of mind, there is an emerging lack of confidence in its potential effectiveness. There is no doubt changes have been made to comply with GDPR – a solid 70% confirm they have dedicated resources to GDPR initiatives. However, interestingly enough, only more than a third say they’re confident in their organization’s state of GDPR compliance. And among those who think GDPR could potentially help privacy efforts, fewer than one in four believe that help will be substantial.
What is the Greatest Threat to Europeans’ Personal Information Protection?
As GDPR goes into full effect and consumers read news headlines about the misuse of personal information by social media organizations, security professionals are becoming increasingly sensitive to the challenges of personal privacy. Among their greatest concerns is the use of personally-identifiable information by commercial organizations. Nearly 60% of respondents cited collection and/or sale of personal information by enterprises and social media organizations that don’t properly protect privacy as the biggest danger to personal data. These concerns have driven more than 40% of information security professionals to plan to minimize their own social media usage, and many are advising their users and business units to do the same.
Europe’s Critical Infrastructure Still a Concern One Year Later
Nearly two-thirds of security professionals (65%) believe that a major attack on critical infrastructure spanning multiple European countries will occur in the next two years. This figure indicates that concerns over such an attack have not ebbed since last year’s survey. A chief concern appears to be cyber threats from large nation-states such as Russia and China: 30% believe large nation states are the greatest threat – followed by 17% citing financially motivated, organized criminals.
Why Are European Cybersecurity Teams So Doubtful About Their Defenses?
Similar to last year’s report, Europe’s weak defenses still relate to lack of funds, unequipped professionals and ineffective technology. 42% of respondents believe the weakest link in their defenses are end users who violate security policy and are too easily fooled by social engineering attacks. Meanwhile, 20% blame a skills shortage for failed IT security strategies, and less than half think they have enough budget to defend against today’s threats.
Additional Key Findings
Only 15% personally participate in cryptocurrency buying or selling
70% are urging users to rethink the data they’re sharing on social networks
When asked about the most effective security tools professionals ranked: multifactor authentication (88%), encryption (87%), and firewalls (75%)
52% say sophisticated and targeted attacks are their No. 1 cybersecurity concerns
Download the Full Research Report
Insights from Black Hat Europe’s latest report draws attention to critical industry concerns and flaws on both a national and global scale. To learn more about these findings and other reported intel, download a copy of Europe’s Cybersecurity Challenges, here: messages.blackhat.com/eu18-report
Black Hat Europe 2018: December 3–6, London, UK
On the heels of this new research, Black Hat will host some of the brightest minds in the InfoSec community at Black Hat Europe 2018. The event will feature a robust program, spanning everything from popular social media platforms, mobile devices, widely used operating systems and more. The event will take place December 3-6 at the EXCEL London, in London, England. For more information and to save €200 on your briefings pass by December 2, please visit: blackhat.com/eu-18/
Black Hat Europe 2018, London, England, December 3-6, 2018
Black Hat Asia 2019, Singapore, March 26-29, 2019
Black Hat USA 2019, Las Vegas, Nevada, August 3-8, 2019
About Black Hat
For more than 20 years, Black Hat has provided attendees with the very latest in information security research, development, and trends. These high-profile global events and trainings are driven by the needs of the security community, striving to bring together the best minds in the industry. Black Hat inspires professionals at all career levels, encouraging growth and collaboration among academia, world-class researchers, and leaders in the public and private sectors. Black Hat Briefings and Trainings are held annually in the United States, Europe and Asia. More information is available at: blackhat.com. Black Hat is organized by UBM, which in June 2018 combined with Informa PLC to become a leading B2B information services group and the largest B2B Events organizer in the world.
To learn more and for the latest news and information, visit www.ubm.com and www.informa.com.