The Internet can be a dangerous place, and a new global survey is revealing that billions of people have likely been the target of cybercriminals at some point in time. The survey found that nearly half of all respondents have fallen victim to a cyberattack or scam.
In a poll of 20,000 employed adults from around the world, 45% reported that their personal data, such as banking or email account information, has been compromised by a hacking attempt or scam. In fact, almost half admitted that they’re reactive to cyber threats, rather than proactively protecting against them, in their personal lives (45%) and at work (44%).
According to respondents, online scams and phishing attempts have become more sophisticated (72%) and successful (66%) due to artificial intelligence. In time for Cybersecurity Awareness Month in October, Yubico commissioned this global survey, with respondents from the United States, United Kingdom, Australia, India, Japan, Poland, Singapore, France, Germany, and Sweden, to investigate the global impact of cyber insecurity, both personally and in the corporate realm.
Half of respondents (50%) disclosed that they’ve been exposed to a cyberattack at work in the last year. Of those, not even a quarter (23%) said the company they work for responded by requiring cybersecurity training going forward. Of those whose personal data has been hacked, 20% reported that a cyberattacker successfully hacked one or more of their personal accounts, including bank or email accounts.
Delving into the layered side-effects of successful hacks and scams, 22% lost money as a result and 30% said they have doubts that their personal information will ever be safe again. For the 50% of respondents whose personal passwords have been exposed by a hack or data leak, the most common compromised passwords were those securing social media accounts (44%).
Why are these hacking attempts so successful?
The research found that 39% believe that simply using a username and password is the most secure way to protect accounts and information. In fact, it is respondents’ most-used form of account protection.
“While passwords have been the go-to method for logging into accounts and securing information, they’re inherently insecure,” notes Derek Hanson, vice president of standards and alliances at Yubico, in a statement. “People tend to reuse passwords across multiple accounts and use weak passwords, which allows hackers to breach multiple accounts with a single login. Along with that, people are often tricked into sharing their passwords due to the sophistication of today’s phishing attacks. Using a username and password to protect accounts and information is the least secure form of data protection.”
Despite this, for those reporting cyberattacks at work, the most common avenue to “re-secure” information was simply implementing username and password resets for company accounts (30%). Another 20% disclosed that the company they work for only updates their technology and security policies on an “as-needed” basis.
Considering the lack of up-to-date cybersecurity protocols at work, alarmingly, respondents reported the measures in place to protect information at work are stronger than those protecting their personal information (70% vs. 63%).
In light of this, it’s no surprise that for respondents around the world, getting hacked on their personal accounts (24%) is the top cybersecurity fear keeping them up at night.
“According to the findings, people feel that their data is safe. However, the results of the survey prove the opposite,” Hanson says. “And even worse, many have been successfully hacked and scammed on various platforms. Nearly half of those hacked have had their social media accounts compromised. And while this is significant in itself, it’s especially worrisome considering that social media accounts often contain sensitive data, like credit card information and communication with friends and family. We encourage everyone, both companies and individuals, to reexamine their data protection and adopt more secure measures, like multi-factor authentication whenever possible.”
Source: https://studyfinds.org/half-the-world-cyberattacks/?nab=0