1 in 2 IT pros admit cybersecurity policies are ad hoc, not integrated
1 in 2 IT pros admit cybersecurity policies are ad hoc, not integrated
Executive summary:

This edition of Cybersecurity Insights focuses on the latest results from an online Cybersecurity Risk & Readiness Assessment developed for AT&T by Spiceworks. The assessment enables IT pros to assess their own practices, strategies, and concerns about security by answering 8 simple questions. The responses to date have been surprising—and unsettling. Answers from the assessment reveal that while individual company deficiencies vary, overall security risks are broad, deep, and span across all business sizes and industries.

The risk assessment, on which this report is based, came from our previous report, Charting a new course: when investing more in cybersecurity isn’t the answer. We will take a look into the answers from the risk assessment, in which many IT pros feel their organizations are still not prepared for cyberattacks and security breaches. And we will explore what organizations can do to better protect themselves and their customers from attacks happening today, from phishing schemes to ransomware, crypto mining and more, as well as how they can be better prepared for the threats of tomorrow.

“There’s only so much you can do. You can fix things as they break. You can fix things as infections are detected, and you can quarantine them; but there are always going to be more coming. It’s a 24/7 job and there’s only so many hours in the day.”

-IT pro1
Keep up-to-date

Stay on top of the latest cybersecurity advancement, issues and discussion among thought leaders by reviewing all of our security reports at

View the reports
Ready for your own cybersecurity risk assessment?

Find out where your organization stacks up in regard to cybersecurity by taking the Cybersecurity Risk & Readiness Assessment. You can see how well prepared you are to address threats and determine where you need to make improvements.

Get your rating
1 AT&T Cybersecurity Vol. 8 Content Research Interviews, Spiceworks Research Report, August 2018.


2 Gregory Garrett, “Cyberattacks Skyrocketed in 2018. Are you ready for 2019?” IndustryWeek, December 13, 2018.


3 Donna Fuscaldo, “Crypto Mining Malware Grew 4,000% This Year,” Forbes, December 2018.

4 AT&T Cybersecurity Risk & Readiness Assessment.


5 Chris Doman and Tom Hegal, “Making it Rain – Cryptocurrency Mining Attacks in the Cloud,” AT&T Security Blogpost, March 2019.


6 Peter Orszag, “Effects of Cyber Breaches on Corporate Bottom Line,” Insurance Journal, April 2018.


7 Christoph Ruef, “3 Best Practices to Boost Endpoint Security,” BizTech Magazine, February 2019.


8 Sean Michael Kerner, “One third of companies are largely unprepared for cybersecurity attacks,” eSecurity Planet, February 2019.


9 Davey Winder, “Penetration tests are being ignored by enterprises living dangerously,” SC Media UK, February 2017.