Global enterprise leaders see emerging AI and machine learning technologies as the biggest looming threat to cybersecurity, and are focusing future cyber investments on detection and prevention rather than remediation, according to new survey research from Information Services Group (ISG) (Nasdaq: III), a leading global technology research and advisory firm.
The ISG Cybersecurity Buyer Behavior Study of more than 200 global IT and enterprise executives found the vast majority – 95 percent – of respondents reported multiple cyberattacks and incidents in their organization over the previous 12 months. The most common incidents were phishing, which was cited by three-quarters (74 percent) of respondents, malware (60 percent) and software vulnerabilities, which affected 50 percent of survey participants.
The study also found phishing, ransomware and third-party vulnerabilities were the most challenging attacks for responding enterprises to remediate.
“The number-one security risk organizations expect over the next two years is the evolving threat from AI and machine learning, listed as a top threat by 56 percent of respondents,” said Alex Bakker, ISG Distinguished Analyst and author of the study. “Even as they face ongoing phishing and software-related attacks, senior enterprise leaders are doubling down on prevention over remediation as they prepare for more sophisticated and harder-to-detect attacks.”
The perceived risk from AI and machine learning is particularly strong in banking and financial services firms, where nearly 80 percent of participants highlighted emerging technology as a top-three challenge. Ransomware and cloud-based threats also remain an important focus for 46 percent and 45 percent of security decision makers in all industries, respectively.