Research finds 2019 increase in breaches and cybersecurity spending

The ServiceNow and Ponemon study found an average 24% increase in cybersecurity spending and a 17% rise in attacks.

Spectre and Meltdown explained: New variants and more efficient patches
Learn about these uniquely dangerous vulnerabilities as TechRepublic’s James Sanders discusses up-to-date info on the latest variants and best mitigation strategies to minimize performance impact.

A new Ponemon Institute survey of nearly 3,000 security professionals in nine countries found steep increases in cybersecurity spending yet corresponding rises in the number and scale of attacks.

Organizations in Australia, France, Germany, Japan, the Netherlands, New Zealand, Singapore, the United Kingdom and the United States are particularly struggling with timely patches, according to the ServiceNow-sponsored survey, titled “Costs and Consequences of Gaps in Vulnerability Response.” Disorganization or unresponsive departments were the main cause behind the lag in patch time, which ballooned to 12 days and even 16 days for certain critical vulnerabilities.

“This study shows the vulnerability gap that has been a growing pain point for CIOs and CISOs,” said Sean Convery, general manager of ServiceNow Security and Risk. “Companies saw a 30% increase in downtime due to patching of vulnerabilities, which hurts customers, employees and brands.”

Nearly 90% of respondents said they were forced to deal with multiple departments within their organization in order to execute patches, which was part of the reason why it took an average of 12 days for most IT departments. Another 80% said they didn’t have a common view of applications and assets across security and IT teams.

Three out of every four people who spoke to Ponemon said they could not take certain applications and systems offline to patch them quickly. This was having a distinct effect on their ability to keep the enterprise safe from a constantly evolving…