Which cybersecurity attack is currently your highest priority (to defend against)?

Leadership Architecture

Ransomware and multifaceted extortion33%

Business email compromise40%

Third-party vendor compromise (supply chain)17%

Cloud security incidents7%

I have no idea1%

746 PARTICIPANTS

4.2k views2 Upvotes1 Comment

Sort by:

Group Director of Information Security in Bankinga year ago

Attacks are a symptom. Attack vectors are more important to identify. As an example; Your choices of Ransomware, Cloud security incidents or even 3rd party vendor compromise, the attack vectors is 'identity compromise'. Identity compromise can happen via insecure account credentials, loss of API keys and secrets, session cookies , tokens or inadequate use of OTPs. Now if I flip your question to read,
"Which cyber security attack vector is your highest priority?"
I would answer in below order of priority:

1. Credentials / identity loss of web facing applications ( missing SSO/PAM integration).
2. Patchable vulnerabilities exploitation of web facing applications and endpoint desktops. (Broken / insufficient patch management process)
3. Compromised credentials on admin endpoints (Inadequately configured EDR and missing least privilege access user account on privileged user endpoints, making them susceptible to phishing attacks).

Content you might like

How do you mitigate the impact of unexpected talent departures? Are there any tech solutions or other strategies you use to retain institutional knowledge?

What do you think will be the most important things in the data center sector in 2026?

Virtualization Strategy and Implementation

Hyper-Converged Infrastructure (HCI) Adoption60%

Infrastructure Observability and Monitoring40%

Cloud-Based Backup and Shared Infrastructure Services from local vendors40%

Software-Defined Infrastructure and Automation20%

Edge Computing and Edge AI Implementation

Advanced Data Center Cooling Technologies

Hardening of existing Infrastructure20%

View Results

What percentage of your team's budget goes towards technology?

< 5%12%

5-10%58%

11-15%14%

> 15%14%

View Results

Can you share any tips for new security leaders to identify blind spots in their organization? How have you approached this when starting a new role in the past?

Which cybersecurity attack is currently your highest priority (to defend against)?

Sort by:

Content you might like

How do you mitigate the impact of unexpected talent departures? Are there any tech solutions or other strategies you use to retain institutional knowledge?

What do you think will be the most important things in the data center sector in 2026?

What percentage of your team's budget goes towards technology?

Can you share any tips for new security leaders to identify blind spots in their organization? How have you approached this when starting a new role in the past?

Any tips for evaluating/implementing solutions for application detection and response? What’s your experience been like with these tools so far?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

DevSecOps: Strategies, Organizational Benefits and Challenges

Green Cloud Computing

Omnicloud: The Future of Cloud Computing?

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go