79% of organizations in Asia Pacific (APAC) believe that poor employee behavior is a greater email security concern than inadequate tools (21 percent) according to a study. This highlights the need for organizations to include employee awareness and training as part of their email security strategy.
The global study of more than 630 professionals responsible for IT security was conducted by Dimensional Research sponsored by Barracuda Networks, Inc., a provider of cloud-enabled security and data protection solutions. It is aim to better understand the email security approach of today’s organizations.
APAC respondents indicated that their organization would benefit from additional email security capabilities, with phishing simulation (60%), social engineering detection (58%t), email encryption (66%) and data loss prevention (75%) leading the way in terms of capabilities valued.
All respondents from APAC have good intentions and believe end-user training and awareness are important; however, only 79% provide training for their employees. It was also reported that larger organizations (over 1,000 employees) are more likely to train their employees.
When asked what approaches would work best, 60% of respondents from APAC cited regularly scheduled modules that can be done at an employee’s convenience, followed by customized examples relevant to departments and roles (55%) and unscheduled simulations of typical attacks (40%).
More specifically in Malaysia, Malaysia Computer Emergency Response Team (MyCERT) has received 2,713 reports between January and May 2018 based on general incident classifications which include harassment, fraud, intrusion, intrusion attempts and malicious codes which were based on emails received by individuals.
In response, Barracuda announced that it has expanded its PhishLine product portfolio with a streamlined edition for organizations with less than 1,000 employees, tuned specifically for distribution through the reseller channel. PhishLine helps prevent email fraud, data loss and brand damage by training and testing employees to recognize highly targeted phishing attacks. It is now available in multiple versions to suit the needs of organizations of all sizes.
“As phishing attacks become increasingly stealthy and more targeted, our adversaries have shifted their focus from the largest organizations to smaller targets,” said Hatem Naguib, SVP and GM of Security at Barracuda. “Today’s announcement expands our PhishLine portfolio, by building on our enterprise grade offering with a solution aimed specifically at simplicity and fast time to value, fit for today’s resource constrained mid-sized businesses.”
Get more information about Barracuda PhishLine here.