Business Wire

FL-KNOWBE4

29.3.2023 14:01:30 CEST | Business Wire | Press release

Share
KnowBe4 Finds State and Local Governments Struggle to Defend Against Ransomware and Business Email Compromise

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, released a new report showing the continued impact cyber crime is having on state and local governments entitled “The Economic Impact of Cyber Attacks on Municipalities”.

KnowBe4’s report details the financial costs, reputational effects, level of public trust and other impact cyber attacks have on municipalities. The report breaks down the impact cyber attacks have into five target areas: the average financial loss from state and local governments, the denial of service to citizens due to financial loss, the frequency/types of attacks and the risk of recurring attacks, the challenge of allocating capital to prevent attacks and the decline of economic investment in municipalities.

Additionally, the new reports revealed ransomware continues to plague municipalities in all industry sectors. Business email compromise (BEC) attacks were also proven to be one of the most lucrative forms of cyber attacks in 2022, generating billions of dollars lost across all sectors and increasing across all sectors by 175%, with an 81% surge in 2022. State and local governments are particularly vulnerable to these attacks due to government transparency laws which allow cyber criminals to more easily tailor their attack to the victim.

Key findings from the report include:

  • Many municipality cybersecurity budgets are underfunded or do not exist at all. According to the National Association of State Chief Information Officers (NASCIO), most state cybersecurity budgets are between 0% and 3% of their overall IT budget. Additionally, only 18 states have a cybersecurity budget line-item and only 16% of states reported a budget increase of 10% or greater since 2018.
  • The 2022 IC3 Report reveals that in 2022, BEC attacks generated a total of $2,742,354,049 in losses across sectors, an increase of $346 million from 2021, and $875 million from 2020.
  • There are 1.7 million ransomware attacks every day, which means 19 ransomware attacks every second. Cybersecurity Ventures predicts that by 2031, ransomware will cost victims $265 billion annually, and it will attack a business, consumer or device every 2 seconds.
  • Ransomware attacks on state and local governments last an average of 7.3 days. Down time alone generates an average loss of $64,645.

In addition to state and local governments, educational institutions are also prime targets and victims of cyber attacks. In 2022, ransomware impacted nearly double the amount of universities and colleges than it did in 2021. Moody’s, which began tracking school districts in 2018, reports that the rates at which school districts are targeted has increased “exponentially”.

“Despite the many statistics and reports that detail the devastating losses caused from ransomware, business email compromise and other cyber attacks, many municipalities still find themselves underprepared for these threats,” said Stu Sjouwerman, CEO, KnowBe4. “Regardless of budget or size, the best way for all industry sectors to defend themselves against the threat of cyber attacks is to educate employees with new-school security awareness training and learn to develop a healthy skepticism of messages from even known contacts. Major municipality targets such as local and state governments and education and healthcare institutions are the backbone of civil service and society. Trained employees are essential to support IT teams, strengthen security culture and create a human firewall as the last line of defense to protect industries across the board, especially the municipality sectors we rely on everyday.”

To download The Economic Impact of Cyber Attacks on Municipalities report, visit https://www.knowbe4.com/hubfs/Economic-Impact-of-Cyber-Attacks-on-Municipalities.pdf.

To download KnowBe4’s Ransomware Hostage Rescue Manual, visit https://info.knowbe4.com/ransomware-hostage-rescue-manual-0.

About KnowBe4

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, is used by more than 56,000 organizations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organizations address the human element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to awareness training on security. Kevin Mitnick, an internationally recognized cybersecurity specialist and KnowBe4's Chief Hacking Officer, helped design the KnowBe4 training based on his well-documented social engineering tactics. Tens of thousands of organizations rely on KnowBe4 to mobilize their end users as their last line of defense.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20230329005253/en/

About Business Wire

Business Wire
Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com
DK

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Enhertu® Approved in the EU as First Tumor Agnostic HER2 Directed Therapy and Antibody Drug Conjugate for Patients with Previously Treated HER2 Positive Metastatic Solid Tumors29.6.2026 08:30:00 CEST | Press release

Approval based on three phase 2 trials of Daiichi Sankyo and AstraZeneca’s Enhertu that demonstrated clinically meaningful responses across a broad range of tumors Enhertu now approved for six indications in the EU Enhertu® (trastuzumab deruxtecan) has been approved in the European Union (EU) as a monotherapy for the treatment of adult patients with unresectable or metastatic HER2 positive (immunohistochemistry [IHC] 3+) solid tumors who have received prior treatment and who have no satisfactory treatment options. Enhertu is a specifically engineered HER2 directed DXd antibody drug conjugate (ADC) discovered by Daiichi Sankyo (TSE: 4568) and being jointly developed and commercialized by Daiichi Sankyo and AstraZeneca (LSE/STO/NYSE: AZN). The approval by the European Commission follows the positive opinion of the Committee for Medicinal Products for Human Use of the European Medicines Agency and is based on results from subgroups of patients with HER2 positive (IHC 3+) tumors across thr

Beerenberg Prevails in Patent Case Against Aspen Aerogels29.6.2026 07:00:00 CEST | Press release

The ruling confirms that Beerenberg did not infringe Aspen Aerogels’ patents. The Korean Patent Court has invalidated three of Aspen Aerogels’ patents related to improved hydrophobic aerogel material. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260628192007/en/ Beerenberg delivers high-end insulation solutions built for performance, reliability, and long-term value. (Photo: Beerenberg) The ruling confirms the conclusion of the Intellectual Property Trial and Appeal Board (IPTAB) that the patents did not meet the necessary requirements for patentability. Beerenberg, which specializes in high-end insulation products, welcomes the court’s decision. “We are pleased that the case has now been concluded and that any uncertainty regarding the infringement claims has been removed,” says CEO Arild Apelthun. About Beerenberg Beerenberg has delivered cost-efficient solutions to a wide range of industrial enterprises for 49 years. Th

Seiden Law LLP States: Cambodian Businessman Leak Yim, Wrongfully Accused in Thailand, Seeks Redress in U.S. Court29.6.2026 06:00:00 CEST | Press release

Seiden Law LLP (“Seiden Law”), legal counsel for Mr. Leak Yim, a Cambodia national, and his family, announces the filing of an application in U.S. federal district court in Washington D.C., seeking court-ordered discovery to uncover the false and misleading information that may have led to mistaken prosecution in Thailand of Mr. Yim as well as his unwarranted identification to Congress as being associated with scam centers in Asia. 28 U.S.C. § 1782 (“1782”) provides powerful evidence-gathering remedies, permitting an applicant to obtain evidence in the United States to assist international proceedings. Seiden Law, a U.S. law firm with significant experience in 1782 cases, has filed this application to compel production of documents and sworn testimony from persons in the U.S. that will shed light on the circumstances surrounding recent actions against Mr. Yim. “Mr. Yim and his young family are the apparent victims of guilt by association and political persecution,” said Robert Seiden,

Sultan Bin Ahmed Attends Media Master's Graduation in Spain28.6.2026 18:40:00 CEST | Press release

His Highness Sheikh Sultan bin Ahmed bin Sultan Al Qasimi, Deputy Ruler of Sharjah and President of the University of Sharjah (UOS), attended on Friday, at the University of Barcelona, the graduation ceremony of the first cohort of the Master of Science in Media Entrepreneurship and Digital Innovation programme, first of its kind, offered by the University of Sharjah's College of Communication in partnership with the University of Barcelona and with strategic support from Sharjah Media City (Shams). This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260628429537/en/ Sultan Bin Ahmed attends Media Master's Graduation in Spain (Photo: AETOSWire) His Highness expressed his pride in their achievements and praised the strong partnership between the two universities, which share a commitment to knowledge, excellence and global understanding. His Highness stressed that graduation marks the beginning of a new journey rather than its con

VerSprite Launches Fork and Knife: AI-Driven Threat Modeling and Adversarial Testing Built for the Speed of Modern Software26.6.2026 23:28:00 CEST | Press release

Powered by the risk-centric PASTA methodology and two decades of accredited offensive security, the integrated platform lets enterprises threat model in a security sprint—then prove the risk through AI-led, human-on-the-loop testing. VerSprite, a global leader in risk-based threat modeling and the firm behind the PASTA (Process for Attack Simulation and Threat Analysis) methodology, today announced the general availability of Fork (www.forktm.com), a continuous application threat modeling platform, alongside Knife, an AI-led, human-on-the-loop adversarial testing platform for web applications and web API endpoints. Together, the two products operationalize a new model for product security—one where applications are securely designed, continuously modeled, and actively tested as part of the build process itself. The launch addresses a problem every security leader knows but few tools have solved: threat modeling is essential, never more so than in an AI-driven era, yet it has remained s

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye