In a poll of 455 IT executives in US SMBs, 42% said their networks were not secure even though 96% and 93% of respondents respectively said they had anti-virus and a firewall installed. 80% said they also used spam filtering. This may indicate that small and medium sized businesses are starting to doubt the effectiveness of traditional perimeter security products in protecting them from other security threats, including data leakage and network breaches.
Conducted by eMediaUSA on behalf of GFI Software, an international developer of network security, content security and messaging software, 39% of respondents to the survey said email viruses are the greatest risk to network security, followed by internet downloads (22%) and hacker attempts (10%). Only 7% considered insider attacks and the threat of portable storage devices – such as USB sticks, CDs, floppies, smartphones, MP3 players, handhelds, iPods, digital cameras – to be the greatest risk.
The survey also reveals that 32% of the US companies surveyed had suffered a breach over the past 12 months mainly due to a virus attack (69%), followed by infected internet downloads (30%) and loss of hardware, such as laptops (24%). Only 2% reported a breach involving some form of fraud or identity threat.
Commenting on the results, Andre Muscat, GFI’s Director of Engineering, said: “Email viruses top the ‘greatest threat to network security’ list and this does not come as a surprise. It is one of the easier attack routes and this is confirmed by those respondents who reported a breach. While companies are aware of, and are focused on, tackling viruses and malware, they appear to be giving sparse attention to other equally dangerous threats such as data theft and leakage from endpoints such as connected USB sticks, iPods and PDAs on the network.”
According to the survey, only 19% of the respondents said they had deployed an endpoint security solution on their network. This indicates that few companies may consider the fact that an employee’s iPod or USB stick can be a threat and used to copy data from the network or else install unauthorized software or upload viruses and malware.
“There are other issues as well. How many companies are aware of vulnerabilities on their network that are not addressed through Microsoft’s regular updates? At the end of the day, it boils down to education – from the top of the organization down to the users – Our survey shows that just under half of the respondents believe security could improve if employees were more aware of security issues, while 25% believe that management should also have a better understanding of security matters,” Mr. Muscat added.
On a daily basis, IT executives are most concerned with downtime (71%) while more than half of the respondents said daily user support was a concern. One in five said compliance was a daily concern; while a mere 3% indicated eDiscovery to be a daily issue.
When it comes to choosing the type of security measure to adopt, just under 90% said they used a software solution with 55% opting for a combination of software, appliances and hosted services.
The full survey can be found at: http://www.gfi.com/documents/rv/smbsurvey.pdf
- Related Videos
- Related Articles
- Ask / Related Q&A
- Securing Networks with Cisco Routers and Switches:642-503 Exam
- Securing Networks With Pix And Asa Exam(Snpa):642-522 Exam
- Securing Networks with Cisco Routers and Switches:642-503 Exam
- Internet Security & Network Firewalls For Security
- 3 Strategies to a Secure Network
- Comptia A+, Security+, Network+ Tutorial – Ethernet Card Troubleshooting
- Randolph County Schools and Walling Data Team Up to Secure Network
- Deploying Secure Network Access
How to Make a Password - Creating Sophisticated Passwords that are Easy to Remember
By: Nicholas G. | 10/11/2009If you do any shopping, bill paying, banking, or communicating online, it is safe to assume that you have created at least five to ten passwords. If not, you may have created one password that you are using for more than one account. Whether you have one or many, we can all agree on one thing. When we make a password, we want it to be easy for us to remember and hard for someone else to figure out.
Peak consulting offers Informatica training and SAP migration services
By: John k | 10/11/2009The data accessing needs to be faster for meeting the challenges with ease. If you have been looking for enhancing the operational efficiency with a unified basis for the data integration for your enterprise, PowerCenter is the solution. For more information visit at www.peakconsulting.eu
Internet Use at Work - Analytical Research Based on Real Data
By: usergate | 10/11/2009The study presented by Entensys (www.entensys.com) was completed in April-June, 2009. The results are based on the analysis of websites visited by 41,200 employees in 1,600 enterprises.
Network Security Risks Affect Everyone
By: Darlene Chisholm | 10/11/2009Network security risks appear like simple enough matters, like someone standing guard over a room full of computers. That is a decent idea but it is impractical. Why? you ask.
On-Demand Security is the Need of the Hour
By: Jeff | 09/11/2009With the availability of sophisticated and modern IT tools, companies are increasingly adopting remote access technologies that enable them to have greater mobility and flexibility. Hence, is becomes important to protect network’s unmanaged endpoints.
Network Security Provider Should Also Take Care of PCI audit
By: Jeff | 09/11/2009PCI audit has affected millions of businesses around the world. E-commerce is gaining popularity and the use of Credit/Debit cards is increasing because of the conveniences they offer to the buyers and sellers.
Medical Identity Theft
By: Heinz Golz | 07/11/2009Medical identity theft is a criminal act that occurs when a person uses another person personal information, such as name and insurance card number, without that person knowledge to obtain or make false claims for medical services or goods.
ISP BitTorrent restrictions? This should help you
By: Carlton Diaz | 06/11/2009Nowadays more and more humans are participating in the WWW phenomenon known as P2P, moreover it has designed an absolutely new way of enjoying media. But some Providers don't like it at all, for the reason that using these systems forges monstrous amounts of traffic that flood through their lines, which of course forges identically extensive costs for them. For this reason, file sharers all over the country experience something very unpleasant with their ISPs - BitTorrent downloads ar...
The Benefits of Email Compliance in a Business
By: Jesmond Darmanin | 26/09/2008 | Regulatory ComplianceLearn why businesses need email archiving to comply with email compliance and eDiscovery requirements, and how email archiving should be implemented.
Email Management Policies and Why Businesses Need One
By: Jesmond Darmanin | 26/09/2008 | EmailWhy email archiving should be an important part of a company's email management system and policy.
How Spam Filter False Positives Harm Your Business
By: Jesmond Darmanin | 26/06/2008 | SpamWhile spam is a huge annoyance for employees and end users everywhere, the real costs for businesses are in time and money and they're increasing every day.
A Recipe for Prize-Winning Email Spam
By: Jesmond Darmanin | 16/06/2008 | SpamThis articles explains how spammers cook up a spam message. This includes all the ingredients and directions on how they cook the ultimate spam delicacy!
Backscatter (NDR) Spam - Protect Yourself
By: Jesmond Darmanin | 14/06/2008 | SpamThe spammers become more desperate and more creative with their techniques. They have discovered how to take advantage of standard operations of most e-mail servers to deliver their useless stuff to our inboxes. - learn to protect yourself!
Staying Safe from Phishing
By: Jesmond Darmanin | 14/06/2008 | SpamThis article explains and helps email users to become aware of the various phishing emails. Therefore avoiding money loss or identity theft.