Phishing Tops Cyber Threats, Despite Low AI Tool Funding
Phishing remains the top cybersecurity threat, with 74% of professionals citing it as their most pressing challenge. Despite this, only 26% prioritize funding AI-based tools, which 32% believe will have the most impact. The 'Infosecurity Europe 2025 Findings' report by ECSO highlights these concerns and more.
Distraction is a significant factor in employees falling for phishing attacks, with 43% of victims citing it as a reason. Lack of adequate social security awareness training also plays a role, with 41% of respondents attributing their vulnerability to this factor. Impersonation of executives or trusted contacts is the most common phishing tactic, used by nearly half of the interviewees.
Organizations are taking steps to mitigate these threats. 65% plan to increase their cybersecurity budget, with email security (45%), social security awareness training (37%), and cloud security (34%) being the top spending areas. However, only 26% are prioritizing funding for AI-based tools, despite 32% believing they will have the most impact. The report emphasizes the need for a proactive, human-centered approach that includes embracing human risk management and securing core security.
Phishing continues to pose a significant threat, with distraction and lack of social security being major contributing factors. While organizations are investing in cybersecurity, there's a disconnect between perceived impact and funding of AI-based tools. To effectively counter cyberattacks, businesses must address these issues and adopt a comprehensive, human-centered strategy.
