Nine out of 10 Canadian Organizations Were Breached At least Once in the Past Year: Trend Micro

Trend Micro Incorporated today announced that 90% of Canadian organizations have had customer records compromised at least once over the past 12 months as they struggle to profile and defend an expanding attack surface. 

The findings come from Trend Micro’s semi-annual Cyber Risk Index (CRI) report, compiled by the Ponemon Institute from interviews with over 4,100 organizations across North America, Europe, Latin/South America, and Asia-Pacific, of which 470 are Canadian.

The CRI calculates the gap between organizational preparedness and the likelihood of being attacked, with -10 representing the highest level of risk. The Canadian CRI index moved from + 0.16 in 2H 2021 to image002.png0.30 in 1H 2022, indicating a surging level of risk over the past six months. 

This trend is also reflected elsewhere in the data: the number of Canadian organizations experiencing a “successful” cyber-attack increased from 83% to 93% over the same period. Unsurprisingly, the number now expected to be compromised over the coming year has also increased from 74% to 86%.

Some of the top preparedness risks highlighted by the index report are related to attack surface discovery capabilities. It is often challenging for security professionals to identify the physical location of business-critical data assets and applications.

From the business perspective, the biggest concern is the misalignment between CISOs and business executives. Based on the scores given by the respondents, “My organization’s IT security objectives are aligned with business objectives” only has a score of 4.35 out of 10.

Overall, Canadian respondents rated the following as the top cyber threats in 1H 2022:

1)      Advanced malware

2)      Cryptomining

3)      Watering hole attacks

4)      Botnets 

5)      Business Email Compromise (BEC)

By addressing the shortage of cybersecurity professionals and improving security processes and technology, organizations will significantly reduce their vulnerability to attacks.

To read a full copy of the latest Cyber Risk Index, please visit:

Leave a Reply