Surprising Security Shortcomings
After nearly a decade of threat warnings, evolving threats and billions of dollars in technology investments, you’d think that businesses have at least a baseline of IT security protections. Recent reports reveal some surprising security shortcomings in the business community.
No Title
While anti-virus software enjoys one of the highest penetration rates in the security market, Symantec’s survey of SMBs (small and midsize businesses) found ONE-THIRD do not have anti-virus protection. Shockingly, 5% have no plans to buy AV applications.
No Title
Despite the drastic increase in malware samples in the wild, 45% of SMB organizations are “extremely unconcerned” about viruses. Another 34% are only “somewhat concerned” about virus threats. This might account for why so many are not using anti-virus software.
No Title
Nearly 97% of all e-mail messages are spam. Despite the time, storage and bandwidth wasted on spam, 42% of SMBs are not using anti-spam applications. 59% of SMBs have no plans to implement anti-spam solutions.
No Title
44% of SMBs report a security breach as a result of a lost or stolen laptop, smartphone or PDA. A Microsoft study found 50% of data compromises happen this way. Nevertheless, less than 14% of SMBs are concerned about such breaches.
No Title
ONE-THIRD of SMBs say they lack reasonable awareness of IT security threats to effectively protect their infrastructures and operations. Another 41% do not have skilled personnel to effectively implement and manage security systems.
No Title
The volume of spam messages for impotency cures and sexual aids plunged two-thirds in the second half of 2008. Once the highest form of spam, such messages for herbal and low-cost male health remedies now account for only 10% of spam volume, falling behind other pharmaceuticals and general retail products, respectively.
No Title
Security breaches caused by deliberate human attacks such as reports of Chinese spies infiltrating the U.S. electric grid make for good headlines. However, less than 20% of all security incidents are the result of human hackers.
No Title
Malware targeting Microsoft Office is on the rise. Surprisingly, 91% of the attacks against Office target a vulnerability disclosed and patched (CVE-2006-2492) more than two years ago.
No Title
Only 3% of SMBs say security is the best cost-saving investment or best technology investment for growing their business. The average security budget for an SMB is $4,500 per year.
No Title
Human error that results in a security breach is the third most common security incident behind systems breakdown and hardware failure and the loss or theft of equipment, respectively. 39% of SMBs say human error was the cause of a security breach in their organization.
No Title
ONE-HALF of SMBs plan to increase their spending on security protection and services over the next 12 months. However, security is the FIFTH BEST opportunity in the eyes of solution providers, behind backup, consolidation, virtualization and mobile solutions.