Please fill in the form below to subscribe to our blog

Businesses Are Facing a Landscape of Evolving Challenges

November 24, 2023

See some of the results of the Kaseya Security Survey Report 2023

In today’s rapidly evolving cybersecurity landscape, keeping businesses safe and secure can be a daunting task. The complications that IT teams face from a challenging economy and the IT talent shortage don’t make things easier either. Our Kaseya Security Survey Report 2023 polled 3,066 IT professionals from around the world to find out what their biggest cybersecurity challenges are right now and what they expect them to be in the next year. Although the results indicate that organizations are taking cybersecurity seriously, they still have weaknesses in their security buildout that could lead to trouble. Here’s an overview of the challenges that businesses face around cybersecurity.


See the challenges companies face & how they’re overcoming them in The Kaseya Security Survey Report 2023 DOWNLOAD IT>>

5 statistics that speak to today’s cybersecurity challenges 

IT professionals have had to contend with a myriad of quickly evolving cybersecurity challenges in the past year. At the same time, strained budgets have added an extra layer of difficulty. These are the five top takeaways from the Kaseya Security Survey Report 2023

  • 78% of respondents said they believe they’ll be hit by phishing in the next year  
  • 58% of respondents think it’s likely they’ll be hit by ransomware in the next 12 months  
  • 92% of respondents support a remote workforce  
  • 23% of respondents do not have an incident response plan 
  • 52% of respondents cite a lack of cybersecurity training as a top problem  

a red fish hook on dark blue semitransparent background superimposed over an image of a caucasian man's hands typing on a laptop in shades of blue gray

Learn how to spot today’s most dangerous cyberattack & get defensive tips in Phishing 101 GET EBOOK>>

The top cybersecurity challenge that businesses face is people   

Cybersecurity is a fast-paced and complex world that brings a variety of challenges to businesses. When considering the IT security challenges that respondents anticipate encountering in the next year, no single challenge outstripped the rest of the pack. What is interesting is that four of the top five security management challenges our respondents selected are people-based challenges: human error (20%), IT and security skills (18%), insider risk (15%) and security awareness training (11%). An increase in security awareness training and strong security policies can mitigate some of these risks. 

What do you anticipate will be your top security management challenge in the next 12 months?   

Challenge Response 
Human error 20% 
IT and security skills 18% 
Insider risk 15% 
Budget 13% 
Security awareness training 11% 
Building a security culture 9% 
Staffing 6% 
Supply chain risk 6% 
Other 1% 

Source: Kaseya Security Survey Report 2023

Follow the path to see how Managed SOC heroically defends businesses from cyberattacks. GET INFOGRAPHIC>>

Businesses are dealing with multiple simultaneous cybersecurity problems

Businesses have dealt with a seemingly never-ending stream of evolving cybersecurity challenges in the last few years. There is no clear leader in the list of cybersecurity issues that businesses have experienced. In fact, the top three challenges are nearly tied. Phishing tops the list of security issues that respondents have encountered (41%), followed closely by viruses (39%) and endpoint threats (39%). More than half of our respondents have also had to contend with a dangerous cyberattack like ransomware or business email compromise at some point (58%). 

Which of the following cybersecurity issues have impacted your business? 

Issue  Response 
Phishing messages 41% 
Computer viruses 39% 
Endpoint threats detected 39% 
Personal information or credential theft 34% 
Business email compromise (BEC) 31% 
Ransomware 27% 
Supply chain attack 18% 
None  4% 

Source: Kaseya Security Survey Report 2023

Find out how Datto EDR helps with Health Insurance Portability and Accountability Act (HIPAA) compliance. GET INFO>>

IT teams are plagued by an array of fast-evolving issues

It’s been a tumultuous year for cybersecurity. In terms of challenges experienced in the past 12 months, the picture shifts slightly, with the top three issues the same but experienced somewhat differently by our survey respondents. Businesses have faced an array of challenges, with no clear main problem. In the past year, over one-third of our survey respondents have had to contend with phishing messages (37%), endpoint threats (33%) and computer viruses.    

Which of the following cybersecurity issues have impacted your business in the past 12 months? 

Issue  Response 
Phishing messages  37% 
Endpoint threats detected 33% 
Computer viruses 33% 
Personal information or credential theft 29% 
Business email compromise (BEC) 26% 
Ransomware 24% 
Supply chain attack 16% 
None  7% 

Source: Kaseya Security Survey Report 2023

Explore how AI technology helps businesses mount a strong defense against phishing GET INFOGRAPHIC>>

The root cause of most cybersecurity issues is easily fixed

Companies and security teams constantly grapple with an array of challenges that can be hard to pin down. When asked about the top three reasons behind their cybersecurity issues, lack of cybersecurity training was the top overall culprit. More than half of respondents (53%) reported that the lack of end-user or administrator training was a major reason behind their cybersecurity issues. But that doesn’t have to be the case. Cybersecurity awareness training is a highly effective security move that any business can make without a big upfront investment. Plus, automation makes it easy for a lean IT team or solo IT professional to administrate training

What are the top three root causes of your cybersecurity issues? 

Issue Response 
Lack of end-user cybersecurity training 28% 
Lack of defense solutions (antivirus) 28% 
Insufficient security support for different types of user devices 26% 
Lack of administrator cybersecurity training 25% 
Lack of executive buy-in for adopting security solutions 22% 
Lack of funding for IT security solutions 21% 
Lost or stolen employee credentials 17% 
Poor user practices/gullibility 15% 
Open Remote Desktop Protocol (RDP)access 13% 
Outdated security patches 13% 
Shadow IT  11% 
Weak passwords or access management 10% 
We have not experienced a cybersecurity incident 7% 

Source: Kaseya Security Survey Report 2023

Get the scoop on 5 of the worst email-based attacks plus tips to protect businesses from them. GET INFOGRAPHIC>>

Mitigating cyber risk is easy with Kaseya’s Security Suite

Kaseya’s Security Suite has the tools that MSPs and IT professionals need to mitigate cyber risk effectively and affordably, featuring automated and AI-driven features that make IT professionals’ lives easier.  

BullPhish ID — This effective, automated security awareness training and phishing simulation solution provides critical training that improves compliance, prevents employee mistakes and reduces a company’s risk of being hit by a cyberattack.     

Dark Web ID — Our award-winning dark web monitoring solution is the channel leader for a good reason: it provides the greatest amount of protection around with 24/7/365 human and machine-powered monitoring of business and personal credentials, including domains, IP addresses and email addresses.    

Graphus — Automated email security is a cutting-edge solution that puts three layers of AI-powered protection between employees and phishing messages. It works equally well as a standalone email security solution or supercharges your Microsoft 365 and Google Workspace email security.      

Kaseya Managed SOC powered by RocketCyber — Our managed cybersecurity detection and response solution is backed by a world-class security operations center that detects malicious and suspicious activity across three critical attack vectors: endpoint, network and cloud.      

Datto EDR — Detect and respond to advanced threats with built-in continuous endpoint monitoring and behavioral analysis to deliver comprehensive endpoint defense (something that many cyber insurance companies require).      

Vonahi Penetration Testing – How sturdy are your cyber defenses? Do you have dangerous vulnerabilities? Find out with vPenTest, a SaaS platform that makes getting the best network penetration test easy and affordable for internal IT teams.   

Learn more about our security products, or better yet, take the next step and book a demo today!

let us help secure you against passwords reuse with contact information and the ID Agent logo on grey.

Our Partners typically realize ROI in 30 days or less. Contact us today to learn why 3,850 MSPs in 30+ countries choose to Partner with ID Agent!


Check out an on-demand video demo of BullPhish ID or Dark Web ID WATCH NOW>>

See Graphus in action in an on-demand video demo WATCH NOW>>

Book your demo of Dark Web ID, BullPhish ID, RocketCyber or Graphus now!