The majority of C-level executives believe hackers will be more of a threat to business data than insiders over the next three years, research has indicated.
Almost six in ten said external threats will pose more of a risk, although internal dangers remained a big concern for business executives, a Cyber-Ark survey showed.
Targeted attacks and Advanced Persistent Threats (APTs) have been a growing concern across the security industry, following a number of high-profile hacks, including one on RSA.
Mark Fullbrook, director for UK and Ireland at Cyber-Ark, said technology alone was not enough to protect against targeted attacks, so the best approach is to simply close as many gaps as possible.
"The important thing is to make the network as secure as possible. Security as a holistic approach is what companies need to do now," Fulbrook told IT PRO.
"Leave the attackers very, very little to attack. We can certainly close the gap and make things as difficult as possible."
A Symantec report earlier this month warned targeted attacks were likely to increase this year, following 2010 when Stuxnet set a new precedent for such threats.
Cyber-Ark pointed to the recent hack on RSA, noting how privileged accounts and passwords were targeted, indicating a need to improve security around such accounts.
A quarter of respondents said their use of privileged accounts was not being monitored.
As for the internal threat, nearly half of respondents said the IT department were the most likely to snoop on corporate data, whilst one in 10 suspected managers were susceptible to accessing information they shouldn't.
Meanwhile, 16 per cent believed insider leaks had led to competitors gaining valuable corporate information, such as intellectual property.
Fullbrook suggested there was not enough pressure placed on UK companies to secure corporate information and this made the country look bad in comparison to the US.
"Customers in the US do seem to have a more serious view," he added.
When asked if they had ever accessed data on a system not relevant to their role, 28 per cent of North American IT staff respondents said they had, compared to 44 per cent in EMEA.
Furthermore, 20 per cent of US respondents said they or one of their colleagues had used an administrative password to access information that was confidential or sensitive. In EMEA, the figure stood at 31 per cent.
-
RSAC Conference 2025: The front line of cyber innovationITPro Podcast Ransomware, quantum computing, and an unsurprising focus on AI were highlights of this year's event
-
Anthropic CEO Dario Amodei thinks we're burying our heads in the sand on AI job lossesNews With AI set to hit entry-level jobs especially, some industry execs say clear warning signs are being ignored
-
RSAC Conference 2025: The front line of cyber innovation
ITPro Podcast Ransomware, quantum computing, and an unsurprising focus on AI were highlights of this year's event
-
RSAC Conference 2025: AI and quantum complicate securityOrganizations are grappling with the complications of adopting AI for security
-
RSAC Conference 2025 was a sobering reminder of the challenges facing cybersecurity professionalsAnalysis Despite widespread optimism on how AI can help those in cybersecurity, it’s clear that the threat landscape is more complex than ever
-
RSAC Conference day three: using AI to do more with less and facing new attack techniques
-
"There needs to be an order of magnitude more effort": AI security experts call for focused evaluation of frontier models and agentic systemsNews Evaluating the risks of dynamic, evolving AI networks is slow work for cybersecurity analysts
-
Cyber defenders need to remember their adversaries are human, says Trellix research headThere's a growing overlap between nation-state actors and cybercriminals, but these attackers are real people who make mistakes
-
RSAC Conference day two: A focus on new hacking tacticsFrom quantum to AI, experts discussed how new and experimental technologies could be used by hackers to access and decrypt sensitive data
-
RSAC Conference Day One: Vibe Is 'All In' on AI for SecurityNews Artificial intelligence took center stage as RSAC Conference looks at how the discussion has moved from generative AI to agentic AI
