San Mateo, CA | September 10, 2024
Kiteworks, the leader in sensitive content communications privacy and compliance, today announced cyberattacks are increasing worldwide, with a 30% increase in weekly attacks on corporate networks in Q2 2024 compared to Q2 2023, making cyber literacy a crucial skill.1 And with cyber literacy comes cyber preparedness, mitigating the risk of a data breach that can expose sensitive content like customer data and cost organizations millions of dollars in lost revenue, fines, and litigation.
With this in mind, experts at Kiteworks, which unifies, tracks, controls, and secures sensitive content communications with a Private Content Network, analyzed search volume data to uncover the most researched, and presumably misunderstood, data security terms in the U.S.
The Most Misunderstood Data Security Terms
Rank | Data security term | Monthly average searches for the definition | Annual average searches for the definition |
1. | Virtual Private Network (VPN) | 57,840 | 694,080 |
2. | Health Insurance Portability and Accountability Act (HIPAA) | 13,700 | 164,400 |
3. | Malware | 13,200 | 158,400 |
4. | Personally Identifiable Information (PII) | 11,760 | 141,120 |
5. | Social Engineering | 11,400 | 136,800 |
6. | Multi-Factor Authentication (MFA) | 8,330 | 99,960 |
7. | Encryption | 6,700 | 80,400 |
8. | Digital Rights Management (DRM) | 5,770 | 69,240 |
9. | Secure File Transfer Protocol (SFTP) | 4,950 | 59,400 |
10. | Firewall | 4,400 | 52,800 |
Please see the full dataset here.
VPN is the Most Misunderstood Data Security Term in the U.S.
The most misunderstood data security term in the U.S. is “Virtual Private Network (VPN),” which sees an average of 57,840 searches per month or 694,080 annually. Despite its significance in securing online connections and protecting sensitive data, many are unclear about the full scope of VPNs.
Tim Freestone, Chief Strategy and Marketing Officer at Kiteworks, comments:
“A Virtual Private Network (VPN) is essential for ensuring secure and private connections over the internet. A VPN is designed to encrypt your online activities, making it harder for cybercriminals, and even your internet provider, to intercept your data. Nevertheless, VPNs have their limitations: there remains an underlying risk when you open a VPN tunnel into your employer’s network from an untrusted home or public Wi-Fi network. Understanding VPNs is crucial not just for protecting personal privacy but also for securing sensitive business information, particularly in remote work environments. Many organizations use VPNs as a fundamental layer of their cybersecurity strategy, highlighting their importance in safeguarding against potential breaches and unauthorized access.”
HIPAA is the Second Most Misunderstood Data Security Term
Following closely is the “Health Insurance Portability and Accountability Act (HIPAA),” with 13,700 searches each month or 164,400 annually. Despite its significance in safeguarding sensitive health information, many are unclear about the definition of HIPAA.
“ In 2023, healthcare organizations experienced the most data breaches since 2009), with the industry paying the highest average data breach cost compared to other industries since 2010. The HIPAA Privacy Rule is a key federal law which establishes national standards for protecting individuals’ medical records and other personal health information. Understanding HIPAA is not just essential for compliance but also for protecting patients from potential data breaches and protected health information (PHI) loss, which could have severe consequences. Some organizations that don’t work in the healthcare sector still use HIPAA as a measure for the maturity of their data security, signifying its importance.”
Malware Ranks Third Among the Most Misunderstood Data Security Terms
The third most misunderstood data security term is “Malware,” with 13,200 monthly searches and 158,400 annually. Although widely used, the term still causes confusion, making it a critical point of concern.
Freestone clarifies: “Malware, or malicious software, is designed to infiltrate, damage, or disable computers and systems. It encompasses various types, including viruses, ransomware attacks, and spyware. Given the rising sophistication of cyberattacks, understanding malware and its potential impact on an organization’s infrastructure and sensitive data is vital. Failure to recognize the threats posed by malware can lead to devastating breaches and significant financial losses. By protecting their infrastructure against malware, organizations can ensure the systems and data they rely on to function and grow is secured.”
Digital Rights Management (DRM) and Secure File Transfer Protocol (SFTP) rank in the Top 10 Most Misunderstood Data Security Terms
In the top 10, “Digital Rights Management (DRM)” ranks eighth with 5,770 monthly searches or 69,240 annually. DRM, which refers to technologies used to control the access to and use of digital content, is often misunderstood despite its widespread application in protecting intellectual property and other sensitive content. “Secure File Transfer Protocol (SFTP)” also makes the list, with 4,950 monthly searches and 59,400 annually. SFTP is a crucial tool for securely transferring files over a network, yet its functionality and benefits are frequently unclear to many users.
“Digital Rights Management (DRM) is a critical tool for safeguarding intellectual property like eBooks, software, and videos, but also increasingly other sensitive, proprietary content that needs to be shared with select partners for short time periods. This can include contracts, proposals, and customer records. DRM works by encrypting the digital content so that only authorized users can access it, restricting how it can be used and distributed. The primary function of DRM is to prohibit content copying or limit the number of people or devices that can access a piece of content. Secure File Transfer Protocol (SFTP), by contrast, is vital for transferring files securely, reducing the risk of interception and unauthorized access. SFTP is the file transfer tool of choice in many organizations, encrypting the credentials and the content to unreadable format. This encryption ensures that sensitive information remains protected even if the data is intercepted during transmission.”
Why Understanding Data Security Terms is Crucial for Organizations
As cyber threats become increasingly frequent and sophisticated, it is crucial for organizations to have a comprehensive understanding of key data security terms to safeguard sensitive information. Knowledge of concepts such as VPNs, HIPAA regulations, and malware empowers companies to protect personal data, ensure compliance, and fortify their defenses against potential breaches.
About Kiteworks
Kiteworks’ mission is to empower organizations to effectively manage risk in every send, share, receive, and save of sensitive content. The Kiteworks platform provides customers with a Private Content Network that delivers content governance, compliance, and protection. The platform unifies, tracks, controls, and secures sensitive content moving within, into, and out of their organization, significantly improving risk management and ensuring regulatory compliance on all sensitive content communications. Headquartered in Silicon Valley, Kiteworks protects over 100 million end users for over 35,000 global enterprises and government agencies.
Press Inquiries:
Manon Muscio
PR Manager
manon@journalistic.org
Methodology:
- Kiteworks set out to identify the most misunderstood data security terms in the U.S.
- To achieve this, they first compiled a seed list of terms. They then used Ahrefs software to analyze the number of monthly searches made in the U.S. by combining each keyword with “meaning” and “definition.”
- The monthly search volumes were added together, and the total was multiplied by 12 to generate an annual report.
- Finally, the terms were ranked in ascending order to produce a top 10 list.
- The study was carried out on 12 August and relates to that date.
- Please find the full data set of all terms used in this study, here.
Note to editors:
1. Decipher | “Check Point Research Reports a 30% Surge in Global Cyber Attacks in Q2 2024 – Highest Increase in Two Years”
About Accellion
Kiteworks’ mission is to empower organizations to effectively manage risk in every send, share, receive, and save of sensitive content. The Kiteworks platform provides customers with a Private Content Network that delivers content governance, compliance, and protection. The platform unifies, tracks, controls, and secures sensitive content moving within, into, and out of their organization, significantly improving risk management and ensuring regulatory compliance on all sensitive content communications.
Media Contacts
Additional Resources