The average claim frequency among customers using email security tools grew by 53% year-over-year, the researchers said. Users of nearly all email security tools had higher claim frequencies, except Sophos; At-Bay attributes this to Sophos’ early investment in natural language processing (NLP) that can detect the frauds. Other platforms analyzed included Proofpoint, Mimecast, Barracuda, Intermedia, and Appriver.
The dangers of VPNs and remote access
Virtual private networks (VPNs) are also a major intrusion vector, according to At-Bay’s findings. In 2024, for instance, 80% of ransomware attacks began with a remote access tool, with 83% of them involving a VPN.
Interestingly, self-managed, on-premises VPNs posed the highest risk: Their users were 4X more likely to be victims of ransomware attacks than companies with cloud-based VPNs, or even those with no VPN at all. Notably, Cisco and Citrix were the most at-risk VPNs in 2024; businesses using them were nearly 7X more likely to be victims of ransomware.
