Government unprepared for hybrid challenges

Ivanti has published the results of its Government Cybersecurity Status Report. Ivanti worked with cybersecurity experts and surveyed more than 800 government workers globally to understand the attitudes and actions of government workers when it comes to cybersecurity.

  • 8 months ago Posted in

The report revealed that hybrid work has opened up yet another frontier of vulnerability, with 70% of government workers reporting they work virtually at least some of the time. The proliferation of devices, users, and locations adds complexity and new vulnerabilities for government security teams to tackle – while also combatting increasingly sophisticated threat actors.  

With generative AI making phishing emails increasingly more realistic, the human-sized gaps in cybersecurity are placing government agencies and organizations at increasing risk of a successful ransomware attack. The report found that 5% of government workers have fallen victim to a phishing attempt – either by clicking a link or sending money.   

According to the report, a “not my job” attitude is contributing to the security risk for the public sector: 

34% of government employees do not believe their actions impact their organization's ability to stay safe 

17% don’t feel safe reporting security mistakes they’ve made to the cybersecurity team  

36% did not report a phishing email they received at work 

Alarmingly, 21% don’t care if their organization gets hacked 

“We are in a state of urgency when it comes to securing critical infrastructure, along with public sector employees and the extremely sensitive data they have access to,” said Srinivas Mukkamala, Chief Product Officer at Ivanti. “Government leaders around the world have recognized this urgency and are taking steps to combat ransomware, misinformation, and to protect their critical assets and infrastructure. If we don't focus on cybersecurity as a team effort and provide proactive security measures that enable a better employee experience, security teams and governments will continue to face an uphill battle.” 

The report also revealed that Gen Z and Millennials are not savvier than Gen X or Baby Boomers when it comes to password security and mismanagement. In fact, Gen Z and Millennial government workers are more than twice as likely to reuse passwords between home and use the same password across multiple devices and logins. Employees in all industries and generations continue to use sticky notes, pet names, birthdays, and the favorite unbreakable code: ‘12345.’ 

Cybersecurity and automation provide powerful frontline protection for government organizations – but security teams need to evaluate new policies or technologies through the lens of digital employee experience, to ensure that employees don’t seek ways around the so-called solution. With just 27% of government workers feel “very prepared” to recognize and report threats like malware at work, it is vital for organizations to focus on improving the digital employee experience so that they don’t have to rely on an employee's ability to recognize a threat.  

Misinformation and ransomware can wreak havoc on public safety, global commerce and diplomacy – and even cost lives. Government organizations are particularly vulnerable, because they hold the keys to systems and messages that threat actors want to disrupt and exploit. It’s critical to futureproof our governments and agencies in comparative “peacetime” as many organizations take critical steps after a catastrophic attack.  

Aruba S.p.A. - the main Italian provider of cloud services and the leader in Italy for data centre services, cloud, hosting, trust services, e-mail, PEC (certified emails), domain registration and digital signatures - hosted CSC Connections 2023, the international meeting of the Cloud Signature Consortium, held on 22nd and 23rd November. Held at the Aruba Auditorium, the innovative event venue is located within the framework of the Global Cloud Data Centre campus in Ponte San Pietro (BG).
Showcasing how UK open source skills can power the future UK tech economy.
Workspace 365 has unveiled a plethora of enhancements, as it continues its mission to empower employees by offering a personal, relevant and simplified digital workplace.
Expereo announces latest enterprise customer to help accelerate the digital transformation of one of the leading brewery groups.
Qbilon increases observability to help IT teams identify potential issues before they arise.
Atos and the World Wide Fund for Nature (WWF) have formed a three year strategic partnership to leverage technology to support biodiversity conservation and to encourage businesses to decarbonize. This comprehensive partnership has been designed to tackle three key priorities – business transformation, financing and influence – which are essential to effectively tackle the current biodiversity crisis.
2023 Corporate Social Responsibility at Work Report reveals shifting CSR motivators and priorities as external pressures mount.
Consumer expectations for digital experiences continue to soar, with 62% of consumers stating that their expectations are far higher now than they were two years ago.