Cisco has released the Annual Security Report for the year 2015. The report examines both threat intelligence and cybersecurity trends and also reveals the methods organizations must adopt against these attacks.
The report highlights, that cyber criminals their tactics and adapting their techniques to carry out cyber-attack campaigns in ways that make it harder to detect and analyze. These attacks include Snowshoe Spam, Web Exploits Hiding in Plain Sight, Malicious Combinations.
The results from Cisco Security Capabilities Benchmark Study, which surveyed Chief Information Security Officers (CISOs) and Security Operations (SecOps) executives at 1700 companies in nine countries. The study reveals a widening gap in defender perceptions of their likely security capabilities. Less than 50% of respondents use standard tools such as patching and configuration to help prevent security breaches and ensure that they are running the latest versions. Heartbleed was the landmark vulnerability last year, yet 56% of all installed OpenSSL versions are over four years old. That is a strong indicator that security teams are not patching.