After Phishing, Ransomware Surges as Second Most Common Cybersecurity Concern in KSA
Sophos has released findings from its KSA Cybersecurity Awareness survey 2024, revealing, 74% of respondents experienced phishing attacks, indicating the need for enhanced email security and employee training. In addition, the survey states ransomware (49%) is the second most common Cybersecurity concern, with 42% of organizations lacking formal response plans, highlighting the need for stronger preparedness to effectively mitigate and respond to ransomware incidents.
Phishing has become a significant threat in KSA, with a surge in malware delivery through malicious email attachments and advanced spear phishing attacks. The advent of AI-powered phishing campaigns has further escalated the risk, making traditional defenses like employee training insufficient. Businesses must adopt proactive solutions like Sophos MDR, which combines advanced email filtering, real-time detection and incident response to counter modern phishing threats and strengthen security posture.
“Today’s threat landscape is continually evolving, growing more severe and complex, particularly in regions like Saudi Arabia, where digital transformation is rapidly advancing, there is an urgent need to heighten cybersecurity awareness and preparedness,” said Chester Wisniewski, global field CTO at Sophos. “Cybercriminals operate without regard for international borders, and our defenses must adapt accordingly. While ransomware attack rates have declined over the past two years, the impact on victims has increased. To combat these persistent threats, organizations in the Kingdom and beyond must adopt a proactive, human-led approach to threat detection and response, leveraging advanced technology and continuous monitoring to stay ahead of attackers.”
According to the survey, 59% of the respondents also utilize Artificial Intelligence tools for cybersecurity. AI has revolutionized the way IT security professionals think about cybersecurity. Advanced AI-powered tools and systems enhance data protection by rapidly identifying behavioral patterns, automating processes, and detecting anomalies providing stronger defenses against emerging threats.
Employee training and awareness rank as the most effective AI application across various organizations, followed by threat detection and risk analysis as the second and third most impactful measures supporting cybersecurity efforts. AI still requires human intervention for training and correcting mistakes. A growing concern is the potential for hackers to exploit AI for malicious purposes, such as generating phishing emails and developing malware. In larger organizations with more than 500 employees, 55% of employees are “very concerned” about AI-powered attacks, compared to 33% in medium-sized and 11% in smaller organizations.
The rapid pace of innovation in the cybersecurity landscape makes it challenging for organizations to be prepared for evolving threats and implement cyber controls designed to counter them. Larger organizations, 76% of the respondents with in-house expertise, are better equipped to manage risks, while smaller ones (21%) often lack the resources, making them more vulnerable to attacks. Thirty-five percent of the respondents stated that the most cited skill gaps are in AI/Machine Learning in cybersecurity followed by cloud security (25%). Across all organizations, quarterly training remains uncommon, with only 12% in medium organizations and 19% in large organizations adopting this frequency.
Other key findings from the latest report:
- Phishing reports by employees: Organizations with more than 500 employees have the highest percentage of employees (15%) reporting phishing more than 50 times per month, likely due to advanced monitoring systems and employee training programs
- Organizations with ransomware plan: In organizations with over 500 employees, 89% have implemented a formal ransomware response and recovery plan, demonstrating strong preparedness and recognition of ransomware risks.
- Frequency of cybersecurity training: Small businesses are significantly less likely to provide training, with 61% of small organizations offering no training compared to 20% of medium-sized and just 2% of large organizations
- Budget allocation for cybersecurity from IT: Seventy percent of organizations with more than 500 employees allocate 13% or more of their IT budgets to cybersecurity, showcasing a significant prioritization of protecting complex infrastructures. Sixty-six percent of small organizations allocate less than 10% of their IT budgets to cybersecurity
- Compliance with local data policies: Larger organizations invest more in local compliance due to stricter audits, operational risks, and the sensitive nature of data they manage. Small organizations’ preference for global data center policies may stem from cost-effectiveness, easier scalability and fewer regulatory burdens compared to larger counterparts.
