All articles
IT Leaders Are a Bigger Phishing Threat Than They Admit
A new survey reveals nearly two-thirds of senior IT executives click on phishing links, creating a significant internal security risk.
Key Points
- A new survey reveals nearly two-thirds of senior IT executives click on phishing links, creating a significant internal security risk.
- Despite their own lapses, more than 75% of these leaders remain confident their organization is safe from phishing attacks.
- The report also finds 60% of IT leaders admit to inputting confidential company data into generative AI tools like ChatGPT, often without clear corporate policies.
A new Arctic Wolf survey reveals a startling gap in cybersecurity leadership: nearly two-thirds of senior IT execs admit to clicking on phishing links, with many staying silent out of fear of reprisal.
Do as I say, not as I click: The behavior creates a striking "confidence paradox." Despite their own lapses, more than three-quarters of these same leaders remain convinced their organization is safe from phishing. This overconfidence persists even as nearly 70% of them report being personally targeted by cyberattacks.
Feeding the machines: The risky behavior extends to AI, with 60% of IT leaders admitting to feeding confidential company data into systems like ChatGPT—a rate far higher than their employees. This is happening in a policy vacuum, as nearly half of workers are unsure if their company even has a generative AI use policy.
The report paints a picture of a house divided, where the leaders meant to enforce security rules are the ones breaking them, creating a critical vulnerability from the inside out. The same report highlights the real-world consequences of these vulnerabilities, noting a dramatic surge in data breaches in Australia and New Zealand, where reported intrusions jumped from 56% to 78% in just one year.
