Trellix and CSIS find organisations outmatched

Trellix, a cybersecurity company, and the Center for Strategic and International Studies (CSIS) released a global report, In the Crosshairs: Organizations and Nation-State Cyber Threats, examining security professionals’ mindsets towards nation-state actors, the extent they are being targeted, how nation state actors differ from other cyber criminals and how they view the role of government in responding to attacks. The report found Russia and China among the most likely suspects of being behind successful cyberattacks resulting in data loss, service disruption, and industrial espionage, which led to significant costs to the organisations attacked.

“As geopolitical tensions rise, the likelihood of nation-state cyberattacks rises as well,” said Bryan Palma, CEO of Trellix. “Cybersecurity talent shortages, outdated IT infrastructure, and remote work are the greatest challenges in today’s operating environment. Organisations must improve their automation, remediation, and resiliency capabilities to defend against increasingly sophisticated attacks.”

The report, written by CSIS and based on research conducted by Vanson Bourne, surveyed 800 IT decisions makers from a variety of industries. It highlights the volume and severity of nation-state cyberattacks is a substantial problem for the international community and organisations are looking to governments to help solve.

Organisation Risk. 92% of respondents have faced or suspect they have faced a nation-state backed cyberattack in the last 18 months or expect to face one in the future. The report also finds most organisations struggle to confidently and accurately determine if a cyberattack is linked to a nation-state given technical challenges and the efforts hackers go to hide their identity. Unlike cyber criminals, nation-state actors focus on conducting intelligence operations to gain intellectual property and data to serve an economic or military goal, while also leaving backdoors in organisation infrastructure for reentry.

The risk to organisations is significant, with the average nation-state-backed cyberattack costing an estimated $1.6 million per incident. Yet the report finds 10% of organisations surveyed do not have a cybersecurity strategy.

Consumer Impact. While access to consumer data was the motive for nearly half of reported state-backed incidents, only 33% of organisations reported reaching out to their customers to disclose the incident. The respondents view personally identifiable information (PII) related to either their customers or employees—as one of the main factors they would be targeted (46% and 40% respectively). As organisations prepare their cybersecurity strategies, risks to reputation and trust are at stake. Transparency with end customers should be considered in addition to ensuring direct communication with cybersecurity vendors, partners and government agencies.

Government Guidance. The report found 92% of respondents were willing to share information about an attack, but not always the full details. Overall, organisations are looking to the government for guidance into how they can protect themselves while being hindered by a lack of breach disclosures. 90% of respondents think the government should do more to support and protect critical infrastructure from cyberattacks. In the US, programs like the Cyber Safety Review Board, CISA’s Shield Up and the White House’s new Office of the National Cyber Director are examples of programs governments worldwide should continue to develop to help protect critical infrastructure.

“Nation-states and their criminal proxies are some of the most dangerous cyber attackers because they are capable, best resourced and extremely persistent,” said James Lewis, Senior Vice President and director, Strategic Technologies Program for CSIS. “It’s not surprising that nation states, particularly China and Russia, are behind many of the cyber-attacks organisations experience; what is surprising is that 86% of respondents in this survey believe they have been targeted by a group acting on behalf of a nation-state, and only 27% are completely confident in their organisation’s ability to recognise such an attack in contrast to other cyberattacks.”

To read more exclusive features and latest news please see our Q1 issue here.

Media contact

Rebecca Morpeth Spayne,
Editor, Security Portfolio
Tel: +44 (0) 1622 823 922
Email: [email protected]

About Security Buyer

Security Buyer is the leading authority in global security content, delivering expert news, in-depth articles, exclusive interviews, and industry insights across print, digital, and event platforms. Published 10 times a year, the magazine is a trusted resource for professionals seeking updates and analysis on the latest developments in the security sector.

To submit an article, or for sponsorship opportunities, please contact our team below.

Rebecca Spayne picture 2025

Rebecca Spayne

Managing
EDITOR

Georgina Turner image

Georgina Turner

Sales
Manager

Afua Akoto image - Security Buyer

Afua Akoto

Marketing Manager

Read the Latest Issue

Follow us on X

Follow us on X

Click Here

Follow us on LinkedIn

Follow us on LinkedIn

Click Here

Advertise here

Reach decision makers and amplify your marketing

Advertise here

Click Here

Related News

Image provided by Veeam

AI and Ransomware: Cutting Through the Hype

Rick Vanover, Vice President Product Strategy, Veeam discusses how It might be the great paradox: Artificial Intelligence (AI)….
Copyright: Security Buyer

AmiViz Partners with Titania

AmiViz announced a strategic distribution agreement with Titania. This collaboration underscores a shared commitment to enhancing…
Oil and Gas

Navigating Africa’s Oil & Gas Industry

A comprehensive analysis of security strategies in Africa’s oil and gas industry, covering physical, cyber, and remote surveillance measures.
blackhat

Black Hat Europe Starts Soon

Black Hat Europe starts Monday and now is the perfect time to start planning your experience. With a full lineup of Keynotes…

VIVOTEK’s All-in-One Software Boosts Operational Efficiency for Enterprises

As demand for high-efficiency security systems rises among large enterprises, the global leading…
Assa Abloy website

WTC Amsterdam enhances security and efficiency with digital access solution

The World Trade Center (WTC) Amsterdam, home to over 300 companies, has upgraded its building security with a streamlined, digital access solution from ASSA ABLOY.
John Maddison website

Fortinet launches Lacework FortiCNAPP to enhance cloud-native security

In an advancement in cybersecurity, Fortinet has announced Lacework FortiCNAPP, providing organisations with visibility and security.
GITEX Global 2024 website

GITEX GLOBAL 2024: AI revolution drives strategic tech innovation

GITEX GLOBAL 2024 concluded on Friday, showcasing artificial intelligence (AI) as a transformative force driving business and economic growth
Security Mircon website

Edge Storage Powers Cloud Security

Micron Technology, alongside International Security Buyer, conducted a survey of installers, integrators, distributors, and security managers
Scroll to Top