Half of Belgian companies have strengthened their IT security

The numerous cybersecurity incidents reported in the news have made half of Belgian companies and management more vigilant over the past 2 years. The security policy has been reinforced.

The successive waves of phishing during the coronavirus crisis, ransomware attacks on cities and towns, data leaks admitted by organizations, hackers not only in large and medium-sized companies, but also in SMEs: the news of the past 2-3 years was full of not-so-promising security issues. For those who still doubt it, know that everyone – individual or company – is a potential target. A perception that is gradually making its way. In our ICT Guide survey, 48% of respondents state that these incidents have made their company or management more vigilant and that, as a result, a stricter security policy has been put in place.

In 2023, we hoped more companies would use 2FA

On the other hand, 27% did not perceive any impact during the last years, believing that ‘cybersecurity in their company was the subject of sufficient/significant attention’. The remaining 25% say they felt no impact.

The tsunami of security problems has not necessarily translated into an increase in the number of insurance against cyber risks. Only 16% say their company is insured against cyber risks, compared to 37% who do not know if this is the case. Note that 47% do not know. The companies clearly do not flaunt their assurances, to the point that only a few insiders are in confidence.

2FA remains little used

When asked about the security measures taken by their company to secure their data, companies answer that the use of strong passwords and their obligation is the most frequent answer – regardless of the size of the organization. This is certainly good news in itself, with nevertheless this downside in terms of the number of companies which specify that they have deployed 2-factor authentication (2FA). In 203, we would have hoped that a greater number of companies would use it than the 48% (less than 50 people) to 57% (more than 500 people) questioned.

In very large organizations, the VPN is certainly much more generalized, i.e. in 64% of companies with more than 500 people. The same goes for the answer to the question of whether your company updates its operating system and software on a regular basis. The larger the organization, the more attention this topic receives. Fortunately, because the absence of ‘patching’ of software often represents the privileged entry point for pirates.