GRBusiness
Sophos Global Survey hints Software exploits as initial cause of 23% IT security incidents
BY: Sandra Ani
- used in 35 percent of cyberattacks
Sophos, a global leader in network and endpoint security, today announced the findings of its global survey, The Impossible Puzzle of Cybersecurity, which reveals IT managers are inundated with cyberattacks coming from all directions and are struggling to keep up due to a lack of security expertise, budget and up to date technology. The survey polled 3,100 IT decision makers from mid-sized businesses in the US, Canada, Mexico, Colombia, Brazil, UK, France, Germany, Australia, Japan, India, and South Africa.
Cybercriminals Use Multiple Attack Methods and Payloads for Maximum Impact
The Sophos survey shows how attack techniques are varied and often multi-staged, increasing the difficulty to defend networks. One in five IT managers surveyed didn’t know how they were breached, and the diversity of attack methods means no one defensive strategy is a silver bullet.
“Cybercriminals are evolving their attack methods and often use multiple payloads to maximize profits. Software exploits were the initial point of entry in 23 percent of incidents, but they were also used in some fashion in 35 percent of all attacks, demonstrating how exploits are used at multiple stages of the attack chain,” said Chester Wisniewski, principal research scientist, Sophos. “Organizations that are only patching externally facing high-risk servers are left vulnerable internally and cybercriminals are taking advantage of this and other security lapses.”
The wide range, multiple stages and scale of today’s attacks are proving effective. For example, 53 percent of those who fell victim to a cyberattack were hit by a phishing email, and 30 percent by ransomware. Forty-one percent said they suffered a data breach.
Weak Links in Security Increasingly Lead to Supply Chain Compromises
Based on the responses, it’s not surprising that 75 percent of IT managers consider software exploits, unpatched vulnerabilities and/or zero-day threats as a top security risk. Fifty percent consider phishing a top security risk. Alarmingly, only 16 percent of IT managers consider supply chain a top security risk, exposing an additional weak spot that cybercriminals will likely add to their repertoire of attack vectors.
“Cybercriminals are always looking for a way into an organization, and supply chain attacks are ranking higher now on their list of methods. IT managers should prioritize supply chain as a security risk, but don’t because they consider these attacks perpetrated by nation states on high profile targets. While it is true that nation states may have created the blueprints for these attacks, once these techniques are publicized, other cybercriminals often adopt them for their ingenuity and high success rate,” said Wisniewski. “Supply chain attacks are also an effective way for cybercriminals to carry out automated, active attacks, where they select a victim from a larger pool of prospects and then actively hack into that specific organization using hand-to-keyboard techniques and lateral movements to evade detection and reach their destination.”
Lack of Security Expertise, Budget and Up to Date Technology
According to the Sophos survey, IT managers reported that 26 percent of their team’s time is spent managing security, on average. Yet, 86 percent agree security expertise could be improved and 80 percent want a stronger team in place to detect, investigate and respond to security incidents. Recruiting talent is also an issue, with 79 percent saying that recruiting people with the cybersecurity skills they need is challenge.
Key Survey Findings:
- Cybercriminal tactics have evolved into using multiple attack methods and often multiple payloads to maximize profits
- Software exploits were the initial cause of 23 percent of incidents and used in 35 percent of cyberattacks, demonstrating how exploits are used at multiple stages of the attack chain
- Phishing emails impacted 53 percent of those hit by a cyberattack
- Ransomware impacted 30 percent of attack victims
- 41 percent of attack victims suffered a data breach
- Only 16 percent consider supply chain a top security risk, exposing an additional weak spot
- Nation state adversaries have proven how successful supply chain attacks are, which means common cybercriminals are likely to adopt the attack method
- Supply chain attacks are a launch pad to emerging automated, active-adversary attacks
- IT teams spend 26 percent of their time managing security, yet still struggle with a lack of expertise, budget and up to date technology
- 79 percent said recruiting people with the cybersecurity skills they need is challenge
- 66 percent said their organization’s cybersecurity budget is below what it needs to be
- 75 percent believe that staying up to date with cybersecurity technology is a challenge
Regarding budget, 66 percent said their organization’s cybersecurity budget (including people and technology) is below what it needs to be. Having current technology in place is another problem, with 75 percent agreeing that staying up to date with cybersecurity technology is a challenge for their organization. This lack of security expertise, budget and up to date technology indicates IT managers are struggling to respond to cyberattacks instead of proactively planning and handling what’s coming next.
“Staying on top of where threats are coming from takes dedicated expertise, but IT managers often have a hard time finding the right talent or don’t have a proper security system in place that allows them to respond quickly and efficiently to attacks,” said Wisniewski. “If organizations can adopt a security system with products that work together to share intelligence and automatically react to threats, then IT security teams can avoid the trap of perpetually catching up after yesterday’s attack and better defend against what’s going to happen tomorrow. Having a security ‘system’ in place helps alleviate the security skills gap IT managers are facing. It’s much more time and cost effective for businesses to grow their security maturity with simple to use tools that coordinate with each other across an entire estate.”
Synchronized Security Solves the Impossible Puzzle of Cybersecurity
With cyberthreats coming from supply chain attacks, phishing emails, software exploits, vulnerabilities, insecure wireless networks, and much more, businesses need a security solution that helps them eliminate gaps and better identify previously unseen threats.
Sophos Synchronized Security, a single integrated system, provides this much needed visibility to threats by integrating Sophos endpoint, network, mobile, Wi-Fi, and encryption products to share information in real-time and automatically respond to incidents. More information about Synchronized Security is available at Sophos.com.
The Impossible Puzzle of Cybersecurity survey was conducted by Vanson Bourne, an independent specialist in market research, in December 2018 and January 2019.
This survey interviewed 3,100 IT decision makers in 12 countries and across six continents in the US, Canada, Mexico, Colombia, Brazil, UK, France, Germany, Australia, Japan, India, and South Africa. All respondents were from organizations with between 100 and 5,000 employees.
The International Monetary Fund has urged Nigeria to revise its ₦54.99 trillion 2025 budget downward in response to weakening oil revenues.
It also recommends continued tight monetary policy and high interest rates until inflation further slows.
These suggestions may appear sound within orthodox economic models, but for most Nigerians, they are a recipe for deeper suffering.
Yes, inflation has decelerated—from an average of 31% in 2024 to 22.97% by May 2025. But that improvement hasn’t reached the dinner table.
Food prices remain brutal. Over 33% of Nigerians are officially unemployed, and more than 130 million people live in multidimensional poverty.
Behind every number is a family skipping meals, a child pulled out of school, or a shopkeeper forced to shutter their store.
One of the most damaging constraints in today’s economy isn’t the lack of money—it’s the inability to access it. Most banks avoid lending to those who need credit most.
When they do, they slap on interest rates of 27% to 30% and demand collateral far exceeding the value of the loan. It’s a system that locks out the very people who could drive recovery.
Credit is the oxygen of an economy. Without it, farmers don’t plant, factories sit idle, and markets shrink.
Former U.S. Federal Reserve Chair Ben Bernanke—an expert on financial crises—once observed that the core problem isn’t always overspending, but when capable people can’t borrow. Nigeria is falling squarely into that trap.
There is a way out. By reallocating just 3% of the national budget—₦1.65 trillion—the government could establish a national loan guarantee fund.
This fund would cover the first ₦10 million in loan risk per borrower, giving commercial banks the confidence to extend credit to those who actually produce.
With an average loan size of ₦1 million, such a move could unlock financing for 1.65 million small-scale farmers, cooperatives, and traders. Even if just two-thirds of those efforts succeed, that’s over a million new jobs.
The revenue return is clear. Increased employment expands the tax base. New businesses generate more goods, services, and local demand. Social safety nets face less pressure. That ₦1.65 trillion doesn’t vanish—it circulates, stimulates, and ultimately strengthens the economy.
Meanwhile, the IMF’s warning about Nigeria’s fiscal deficit possibly rising from 4.1% to 4.7% of GDP amounts to a difference of roughly ₦660 billion. That figure is modest compared to the trillions lost annually to inefficiencies and leakages.
It’s also less than what a single thriving sector—such as agriculture, construction, or telecoms—can contribute if properly enabled.
If austerity deepens poverty and chokes productivity, then even those advocating restraint today will soon label the country “unstable” tomorrow. But the burden won’t fall on spreadsheets. It will fall on people.
Nigeria doesn’t need to blindly follow rigid templates drawn up in distant boardrooms. It needs a tailored approach that empowers its own citizens.
The economy cannot grow if credit is frozen. The people cannot thrive without opportunity. And the nation cannot progress on fiscal neatness alone.
We don’t need applause from global observers. We need access—for those ready to build, employ, feed, and innovate. Let’s open the gates, not seal them.
Abidemi Adebamiwa is the Managing Editor @ Newspot Nigeria
Transport
Enugu Air, CNG Buses, Transport Terminals Take off in May
… Govt set to develop tourist sites, reports SANDRA ANI
… Work starts on Nnamdi Azikiwe Stadium, Awgu Games Village in earnest
The Enugu Air, CNG Mass Transit Programme, and the ultramodern transport terminals all built from scratch by the Governor Peter Administration are to be launched for operation before the second anniversary of the government.
The government has also approved the development of the state’s tourism industry, while total transformation of the Nnamdi Azikiwe Stadium and Awgu Games Village will start in June to get them ready for the National Sports Festival to be hosted by the state in 2026.
These were made known by the Commissioner for Transportation, Dr. Obi Ozor; Commissioner for Culture and Tourism, Dame Ugochi Madueke; Commissioner for Works and Infrastructure, Engr. Gerald Otiji; and Commissioner for Youth and Sports Development, Barr. Lloyd Ekweremadu after the State Executive Council meeting at the Government House, Enugu, at the weekend.
Briefing Government House Correspondents, Ozor said, “We are starting off with the initial three aircraft and two of the aircraft are already on ground. The third one will be on ground by the end of this month. We are hoping to start the commercial operations before the second year anniversary of this administration.
“You have also seen buses for the mass transit programme across the state. 50 of them are already parked at Okpara Square, and an additional 50 will be joining that fleet in the next few weeks. The 100 of them will be going into commercial operations before the end of this month, which is the second year anniversary.
“Also, the bus terminals, two at Holy Ghost, one each at Gariki, Abakpa and Nsukka, will also be commissioned and go into commercial operations before the 29th of May, this year.”
He added that the government planned to bring in the electric and CNG automotive manufacturing plant into Enugu as well as launch in the next 150 days the Enugu Smart Transport Programme, which would see to the injection of over 2,000 electric vehicles.
Also briefing newsmen, Dame Madueke said funds would be invested in the tourism industry in phases.
“We are going to have it in phases. For the first phase, we are having Awhum Waterfall, Nsude Pyramid where we are going to have the first canopy walkway in the South East. It measures about 600 metres, which will actually be the longest in Nigeria.
“We also have Ngwo Pine Forest where we are having the first zipline in Nigeria. The zipline will measure about 300 metres. In the same Ngwo, we will have a big rotunda and a smaller rotunda. We have the Cross of Hope to be located at Okpatu. The Cross of Hope will be sitting 580 metres above sea level and the cross itself will measure about 50 metres, making it a total of about 630 metres above sea level. The cross will have about 15 floors with a lift.
“At Awhum Waterfalls, we are going to have another canopy walkway and a boardwalk to preserve the ecosystem.
“We equally have the Akwuke/Atakkwu Waterpark and Ovu Lake Golf and Resort at Akpawfu,” she stated.
She explained that all the tourist sites would have experience centres, food courts and renewable energy, adding that tour buses would soon arrive to ensure ease of movement of tourists.
Ahead of the 23rd edition of the National Sports Festival, Enugu 2026, Barr. Ekweremadu said the State Executive Council had equally directed the commencement of work both at the Nnamdi Azikiwe Stadium and Awgu Games Village not later than June.
“We also briefed the council on the progress made in establishing a Lab for Animation for young people in Enugu State, which His Excellency will be commissioning soon. The lab is ready.
“We are similarly working towards empowering over 2,100 young people across the state, who were trained around December last year. This empowerment will be coming up on the 12th of August, being the International Youth Day’” Ekweremadu concluded.
Energy
NNPC, Dangote Strengthen Strategic Partnership
Bot partners reaffirmed commitment to Healthy Competition Towards National Prosperity, reports SANDRA ANI
As part of ongoing efforts to promote mutually beneficial partnerships and foster healthy competition, the Nigerian National Petroleum Company Limited (NNPC Ltd.) and Dangote Petroleum Refinery & Petrochemicals (DPRP) have pledged to deepen collaboration aimed at ensuring Nigeria’s energy security and advancing shared prosperity for Nigerians.
This commitment was made during a courtesy visit by the President/Chief Executive of Dangote Group, Mr. Aliko Dangote, and his delegation to the Group CEO of NNPC Ltd., Mr. Bashir Bayo Ojulari, and members of the company’s Senior Management Team at the NNPC Towers, on Thursday.
During the visit, Dangote pledged to collaborate with the new NNPC Management to ensure energy security for Nigeria.
“There is no competition between us, we are not here to compete with NNPC Ltd. NNPC is part and parcel of our business and we are also part of NNPC. This is an era of co-operation between the two organizations.” Dangote added.
While congratulating the GCEO and the Senior Management Team on their “well-deserved appointments,” Dangote acknowledged the enormity of the responsibility ahead, noting that the GCEO is shouldering a monumental task, which he expressed confidence that, with the capable hands at his disposal in NNPC, the task is surmountable.
In his remarks, the GCEO, Mr. Bashir Bayo Ojulari assured Dangote of a mutually beneficial partnership anchored on healthy competition and productive collaboration.
Ojulari highlighted the exceptional caliber of talent he met in NNPC Ltd., describing the workforce as a dedicated, highly skilled and hardworking professionals who are consistently keen on delivering value for Nigeria.
Expressing the company’s readiness to build a legacy of national prosperity through innovation and shared purpose, Ojulari said NNPC will sustain its collaboration with the Dangote Group especially where there is commercial advantage for Nigeria.
Both executives also committed to being the relationship managers for their respective organisations through sustained productive collaboration and healthy competition, thereby envisioning limitless opportunities for both organizations.
FORPS Donates Boreholes to 2 Bwari Communities in Abuja
Nigeria Doesn’t Need Applause—It Needs Access
A Joyous Milestone: Pamela Iweze Celebrates Daughter’s Graduation with Pride, Purpose, and a Message of Hope
LASG Acquires New Outboard Engines For Optimum Boat Performance
Elon Musk builds Hotel in Mars, Sets to launch soon at $5million per night – Photos
