Big Companies Reporting More Security Intrusions

Tuesday, October 26, 2010

Bill Gerneglia

44fa7dab2a22dc03b6a1de4a35b7834a

Article by Mark Henricks

Other than a significant increase in intrusions reported by large companies, an annual security survey of IT professionals found little change in the world of IT security over the past year.

Hackers and lack of adequate security were credited with being primarily responsible for successful intrusions.

The 6th Annual Security Survey of IT Executives and Network Administrators found that among large companies with 5,000 or more U.S. employees, 67 percent reported an intrusion of user machines, office network or servers during the last two years.

That was the largest percentage yet found, and was up from 41 percent in 2009 when large companies reporting intrusions fell from 56 percent in 2008. 

Companies of other sizes reported little or no change in the number of intrusions.

For the first time, the survey asked respondents to describe in their own words the primary cause of past intrusions. 

The most common response was hacker or network attack (14 percent), followed by lack of adequate security policies or measures (12 percent).

Those were followed by employee web usage (10 percent) and virus/malware/spyware at 9 percent.

Another sizable change was in the percentage reporting that their organization has an annual outside security audit.

This year 45 percent responded positively, compared to 35 percent in 2009. Nearly three-fourths (73 percent) of those who had outside audits said it was a worthwhile investment.

Amplitude Research conducted the survey for software vendor VanDyke Software.

Three hundred and fifty respondents including CIOs, IT managers, network administrators and other IT professionals filled out surveys in mid-September.

Cross-posted from CIO Zone

Possibly Related Articles:
6359
Enterprise Security
breaches Enterprise Security
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.