The “Oh, Behave!” report needs no introduction. But here’s one anyway.
30% of participants said there is “no point” in protecting themselves as their information is already online.
76% of Millennials express “high confidence” in being able to identify a phishing attack.
29% use those powers of perception to identify a phishing attack – and not report it.
46% of users have never used a password manager.
100% of cybercriminals are laughing right now.
This is the world we live in. We went from the free-wheeling internet days of the ‘90s to the super-stringent cybersecurity re-awakening of the middle aughts, to the overly confident, slightly ambivalent, even existential “search for security meaning” era of the present.
It’s a lot. And it’s not all bad. For example:
Despite the non-reporters, the number of phishing cases being turned over to authorities is on the rise (take that!).
Nearly 60% see themselves as primarily responsible for the protection of their own data online. That’s taking matters into your own hands.
53% see “safety online” as a possible outcome.
45% “always” or “very often” backup their important data.
81% perceive online safety as a priority.
There’s a lot going on with today’s users, and it’s best to see what they’re dealing with up-front. The landscape can be confusing, and the survey’s often paradoxical findings are an indication of that. As people struggle to find their way in a rapidly evolving digital terrain, the Oh, Behave! report gives us a front-row seat to some of the challenges, successes, and opportunities ahead.
The best way to do this is just to dive in. Here are the most eye-popping statistics. You’ll have to read the full report for more (and there is a lot more).
The Good
We’ve got the tools. We’ve got the talent.
It’s an exciting time to be in cybersecurity, and there is a lot of optimism around today’s tools being able to solve today’s problems.
For example, nowadays the majority of participants know how to install their own software updates (62%). Imagine getting those numbers out of the general populace even a few years back. We’ve come a long way. Additionally, data backups are becoming increasingly en vogue, with 31-36% backing up at least sometimes, and an impressive 45% backing up either “very often or always.”
At least 44% across all generations polled (from the Silent Generation to Gen Z) have faith in their ability to spot a fraud email, and more are turning to outside resources to protect them against cybercrime – a 10% increase from last year.
And people are giving back, notably the younger generations. Nearly 40% said that they were the ones relied upon to provide cybersecurity help, with Millennials being the most likely to get “the call.”
What goes around comes around, and it looks like 28- to 43-year-olds have a lot of positive security karma coming their way.
The Bad
MFA: “We know what it is. We just don’t want to use it.”
It’s good to know it’s getting out there. Multi-factor authentication (MFA) is now a recognizable term by 81% of participants (11% more than last year). But that’s not the point, is it? The point is to use it, and not just in a sentence.
Unfortunately, the report reveals that while younger generations (Millennials and Gen Z) have heard of MFA more, they are also less likely to adopt it in their everyday security lives. Comparably, older generations have heard of it less, but those who have, use it more.
The Ugly
Go ahead. Make my day.
That’s essentially what a lot of the “cynical” younger generations are saying, per the survey’s nuanced reporting. Many believe financial loss and identity theft are well-nigh inevitable these days online. Says the report, “Younger generations were more pessimistic, with notable percentages believing both financial loss and information theft online are unavoidable,” with 38% believing that identity theft is bound to happen sometime. (“Well, with an attitude like that...”)
And who can blame them, with the urgent cry for more cybersecurity hands-on-deck pealing for the past ten years (let’s talk about the cyber talent crisis) and breaches filling the headlines almost on a weekly – even daily – basis. After all, it’s breach-o-clock somewhere.
The trick is to stay sober and stay security sharp. Those tools sell for a reason.
The Takeaway
So, things are good, bad, and ugly, are they? Fine. These facts are a means to an end. The big question remains – where do we go from here? In the immortal words of Sam (yes, from Lord of the Rings), “There’s nothing for it [Mr. Frodo]. Well, let’s make it down the hill for starters, shall we?” And that’s what we do.
We take this report as a litmus test. We assess where we are, where we want to be, and how to bridge the gap (sound familiar, Cyber 101?). And then we go from there. But there’s no way we’re going to be able to intelligently strategize an approach if we don’t know the facts now. And for that, you’re going to have to take a look at the “Oh, Behave!” report in full. Find it here.
October Is Cybersecurity Awareness Month
As a National Cybersecurity Alliance (NCA) champion and a Cybersecurity & Infrastructure Security Agency (CISA) partner, Fortra is dedicated to the mission of securing our world by developing best-of-breed cybersecurity solutions that help organizations increase security maturity while decreasing operational burden.
Find resources on how to recognize and report phishing, use strong passwords, turn on MFA, and update software here.
Break the Attack Chain with Fortra
Advanced offensive and defensive security solutions. Complete attack chain coverage. Shared threat intel and analytics. Add Fortra® to your arsenal.
