Vmware has recently announced the results of its third cybersecurity threat report focused on Italy, entitled • Italy Threat Report • Extensive enterprises under threat • and based on an inquiry conducted by interrogating 255 CI

The research has found an increase in both the volume of cyberattacks and violations over the last 12 months in Italy. This led to an increase in investment in computer defence, with Italian companies already using more than eight different tools on average in this area, as reported by the survey.

The report was collected in March and April 2020 by Opinion Matters, an independent research company, on behalf of VMware Carbon Black.

Island hopping greatest threat to cybersecurity

The results that emerge from the survey conducted on Cio, Cto and Ciso Italians are almost plebiscitary:

98% declare that the volume of attacks has increased in the last 12 months. 99% claim that their company has suffered a security breach in the last 12 months on average, and companies claim that they have suffered 2.2 breaches during the reporting period.


L’island hopping is the main cause of the violations, followed by the vulnerabilities of the operating system and attacks against web applications. The Italian companies declare that they use 8 different cybersecurity technologies on average for the management of their security programs.

The most frequent cause of the violations has therefore been identified in the so-called island hopping (26%), as the attack carriers in the supply chain have proved to be an easy target for hackers (Island hopping attacks target the network of a We then find the vulnerabilities of the operating system (18%) and attacks on web applications (14%).

VMware then highlights the fact that Italian cybersecurity professionals have declared that they use on average more than eight different tools or consoles to manage their cybersecurity program: this indicates a security environment that has evolved in a reactive way man

The impact of Covid-19

The research, added VMware, was complemented by a survey of the impact of the Covid-19 pandemic on the attack scene.

According to the supplementary survey, conducted with over 1,000 respondents from the United States, the United Kingdom, Singapore and Italy, 90.5% of Italian cybersecurity professionals said that the volume of attacks increased with the increase in the number of employees working from home.

96% also stated that their organizations were targeted by Covid-19 related malware, while 94% reported an increase in phishing emails and speech phishing risks.

The inability to establish multifactorial authentication (MFA) is reported as the greatest security threat to companies during the Covid-19 emergency. The Commission also notes that the Commission has not yet taken any action to address the problem of the use of the euro. Defects considered significant by 47% of respondents.

Italian respondents were also asked whether the Covid-19 emergency had revealed shortcomings in their emergency recovery plans and to indicate the severity of these deficiencies. These are the results:

90% of respondents report shortcomings in their recovery planning, considered to be minor to serious.

In the recovery planning, considered, 90% declare that they have discovered gaps in the operational activities of the It,

declares that it has discovered, and states that 89% have encountered problems with the certification of a remote workforce;

reported that it had found, 77% reported problems in employee communication,

reports on problems in, 81% confirms difficulties in communication with external partners;

confirms that it has encountered difficulties in, 74% declare that the situation has revealed gaps in the visibility of cybersecurity threats.

According to the survey, the risks directly related to the Covid-19 emergency also emerged rapidly. In addition to 96% of Italian respondents who claimed to have experienced an increase in malware related to the Covid-19 emergency, 94% said they had witnessed an increase in phishing attacks and 94% had witnessed multiple attempts to speak phishing

The full version of the proposed summary can be found on the VMware Carbon Black website.

Leave a Reply

Your email address will not be published.

You May Also Like