SlideShare une entreprise Scribd logo

Kaspersky: Global IT Security Risks

Constantin Cocioaba
Constantin Cocioaba

The document discusses the findings of a global survey on IT security risks conducted by Kaspersky Lab. Some key findings include: - IT security is the top concern for businesses and almost half see cyber threats as a top emerging risk. - The most common external threat experienced by companies is malware. - Companies are cautious of new technologies like cloud computing and mobile devices. - Most companies take measures like anti-malware protection but many feel more investment is needed in IT security.

TechnologieBusiness
1  sur  21
Télécharger pour lire hors ligne
Global IT Security Risks June 17, 2011 Kaspersky Lab leverages the leading expertise in IT security risks, malware and vulnerabilities to protect its customers in the best possible way. To ensure the most effective protection for businesses it is important for us to understand what IT managers think about security, how they deal with various problems, and what the main concerns are. In order to achieve better knowledge, we actively communicate with our clients and partners and align our strategy taking this feedback into account. This helps us a lot in developing the best security solutions for companies of all sizes and industries. To further study business needs, we initiated global research, covering various aspects of IT security. The research was performed in partnership with B2B International, one of the leading global research agencies. More than 1300 IT professionals in 11 countries participated in the survey. All of them influence IT policies and take part in evaluating security risks. The survey covers businesses of all sizes, starting from small (10-99 people) to medium (100-999) and large (1000+). A wide range of topics relating to IT security was covered, including wider business risks, actions taken to protect the business, and incidents that have occurred. Contents Main findings .................................................................................................................................. 3 IT security is the biggest concern ............................................................................................... 3 Top external threat: malware ...................................................................................................... 3 Cautiousness towards new media .............................................................................................. 3 Growth of mobile workforce is the next challenge ...................................................................... 3 Reluctance in adopting new technologies .................................................................................. 3 Anti-malware protection is a must .............................................................................................. 4 Proactive and reactive approaches to security threats ............................................................... 4 More IT security investments as part of the solution .................................................................. 4 In depth overview ........................................................................................................................... 5 Survey details ............................................................................................................................. 5 IT is a top-four strategic concern ................................................................................................ 6
Main concerns of IT staff ............................................................................................................ 7 Future risks ................................................................................................................................ 8 Region-specific IT concerns ....................................................................................................... 9 Significant increase in the number of cyber-attacks ................................................................. 10 Most danger for developing countries and large corporations .................................................. 11 Average annual investment in IT security ................................................................................. 12 More investments required ....................................................................................................... 13 Preparedness for different business risks ................................................................................ 14 Top seven measures taken to avert security risks.................................................................... 15 Banned and restricted user activities........................................................................................ 16 Restrictions by country and economic type .............................................................................. 17 Types of external threats experienced ..................................................................................... 18 Data loss experienced .............................................................................................................. 19 Knowledge of specific external threats ..................................................................................... 20 Conclusion and recommendations ............................................................................................... 21 Recommendations of Kaspersky Lab ....................................................................................... 21 © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Main findings IT security is the biggest concern IT strategy is one of the main concerns for businesses, ranked higher even than financial, marketing and human resources strategy. Almost half of all organizations see cyber-threats as one of the top-three developing risks. Wider business threats may also be a result of an IT security breach. These include damage to brands, espionage, and intellectual property theft. Meanwhile, businesses of all sizes have to deal with an ever-growing number of Internet- enabled devices, with the majority of “endpoints” connected to the Internet, especially in large corporations. Three quarters of all companies globally expect an increase in the number of devices in the next 12 months. A significant number of businesses have already become victims to cyber crime, including targeted attacks, events of corporate espionage and loss of sensitive intellectual property. This in turn leads to the conclusion that cyber threats have become much more important for business, which was confirmed by 46% of the organizations. 59% of companies report to be at least well-equipped against cyber threats. However, small businesses indicate a lower level of confidence. Almost half of the organizations have experienced an increase in the number of cyber- attacks against them in the last 12 months. Businesses are worried that cyber-attacks may involve organized criminal gangs and are concerned about government interference. As a result, prevention of IT security breaches was the #1 concern in all regions among IT staff. Top external threat: malware In the last 12 months 91% of companies have experienced at least one IT security event from an external source. The most common threat comes in the form of viruses, spyware and other malicious programs. 31% of malware attacks resulted in some form of data loss, with 10% of companies reporting loss of sensitive business data. The second most frequent accident is network intrusion; 44% of companies surveyed experienced a security issue related to vulnerabilities in existing software. 18% of the organizations also reported intentional leaks or data being shared by staff. Loss of sensitive data occurred in almost half of these cases. Security breaches most frequently result in the loss of financial data, followed by personal customer information, intellectual property, and employee information. Levels of sensitive data loss are much higher in developing markets. For example, 12% of companies experienced a loss of payment information, but in emerging markets 19% of organizations reported such an incident. While malware has proved to be the most effective weapon of the cyber- criminal, each of the Top-5 security threats are also related to IT security - surpassing “traditional” crime such as theft of hardware. Cautiousness towards new media Given the fact that knowledge about IT security threats among end users is lacking, companies restrict their activities in some way. Thus, 57% of organizations agreed that use of social media by employees introduces significant risks. 53% of companies have banned these kinds of services for end users, and a further 19% restricted access in some way. Social networking is the second most restricted activity, with the most restricted being file sharing; then comes video streaming, instant messaging, personal e-mail, and VoIP. Restrictions are most frequently applied in larger corporations. File sharing and social networking are also regarded by IT staff as the most potentially dangerous end user activities. Growth of mobile workforce is the next challenge The security of mobile devices is a new issue for businesses. 55% of the companies reported that they are much more concerned about this subject than they were a year ago. In fact, around a third of the workforce has been “mobile” for some time already. However, only 36% of companies have a fully implemented policy to deal with security off-site. Just 30% have separate policies for mobile devices, and even less require mobile data encryption. Companies that have taken the mentioned measures evaluate them as least effective. It is no surprise that a third of businesses think that mobile computing is too risky to adopt. There is no doubt that the number of mobile personnel will grow, so mobile devices should be guarded by the same security policies and solutions as traditional PCs. Reluctance in adopting new technologies © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Emerging new technologies such as cloud-based services are evaluated as a possible new source of security risks. 42% of companies are occasionally reluctant to adopt new technologies because of the risks involved. Software-as- a-Service, being part of the new “cloud” trend, is considered to be an opportunity in terms of security by 38% of the companies. Organizations see this as a possible way to effectively “outsource” security issues to the service vendor. Still, some think that cloud computing is mostly a threat. Others are not sure, seeing both opportunities and threats. The number of companies that do not trust third-party suppliers of SaaS with data safety is still high (38%). Implementing SaaS solutions does not mean cancelling in-house security. There is no difference for cyber-criminals where to steal data from - be it on local or cloud infrastructure. Criminal techniques are mainly the same in both cases. Anti-malware protection is a must Protection from malware is the most commonly implemented measure among organizations across the world. It is placed among four core measures, taken by two-thirds of all companies. Anti-malware protection Client firewalls Data backup Patch/update management Still, only 70% of companies have implemented anti-malware protection fully across the business; 3% have no protection at all. The level of anti-malware implementation varies from country to country. In emerging markets 65% of companies have adopted it, while the UK and US show 92% and 82% levels of implementation, respectively. Another key feature of anti-malware protection is that companies of all sizes tend to implement it. It is also seen as the most effective measure along with data backup. Given the number of malware-related incidents, protecting business from this threat is absolutely necessary. Proactive and reactive approaches to security threats Just a little over half of companies evaluated themselves as highly organized and systematic in dealing with IT security threats. 33% possess the opposite, fatalistic attitude, arguing that many IT security events are unforeseeable and difficult to prevent. 28% indicated a somewhat complacent attitude. For them IT security breaches are things that “happen to others”, not themselves. The reactive approach is more popular: where companies invest in IT security only after an incident takes place. IT management in businesses using Kaspersky Lab products is more inclined to look for the newest solutions and technologies. But overall, this kind of attitude is not the norm. Using the latest technologies in IT security is important, and company-wide protection has to be implemented before sensitive data is compromised. More IT security investments as part of the solution Currently, the average sum of investments in IT security is reported to be €5,500 for small businesses, €58,000 for medium companies and €2.3 million for large corporations. Still, most organizations think that an increase in investment of 25% or more could be required. 45% think that current investment rates are inadequate. More than two thirds reported insufficient resources in terms of staff, systems or knowledge. 48% cited budget constraints as a barrier, and this number is significantly higher in developing countries. Generally, most of the companies think that extra investment in IT security is money well-spent (69%). But still there is a significant degree of misunderstanding of IT security among those who are in charge of budgets. 34% of company representatives think that senior management does not see IT security as a major problem. Likewise, there are signs of difficulties in explaining the importance of IT security to end users. Only 42% of respondents agreed that most employees are concerned about IT security. The same number of company representatives think that end users are knowledgeable about IT security threats. The survey showed up a great level of concern about IT security among IT managers in all types of businesses. Below you can find the detailed results of Kaspersky Lab’s research and our recommendations. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
In depth overview Survey details More than 1300 senior IT professionals from 11 countries took part in the survey. All respondents had an influence on IT security policy, and a good knowledge of both IT security issues of general business matters (finance, HR, etc.) Geographically, the survey was conducted in 11 countries, including both those with developing and mature economies. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
IT is a top-four strategic concern IT strategy was evaluated as one of the most important strategic concerns for businesses, along with operational strategy, development of new products and services and financial strategy. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Main concerns of IT staff Preventing IT security breaches is the top concern for IT professionals. Understanding new technologies and finding possible ways to implement them is also in the top-three. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Future risks Almost half of the companies see cyber threats as one of the top-three emerging risks. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Region-specific IT concerns Prevention of IT security breaches was named a main concern in all countries, regardless of the market situation. For other issues there are significant differences between emerging and mature markets. For example, cost constraints are much more important in developed countries. At the same time companies in emerging markets pay more attention to IT-specific education of end users. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Significant increase in the number of cyber-attacks Almost half of surveyed professionals reported an increase in the number of IT security accidents during the last 12 months. On the contrary, only 8% saw a decrease. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Most danger for developing countries and large corporations While 48% of businesses reported an increase in number of cyber-attacks, figures for developing countries and large corporations are much higher. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Average annual investment in IT security The rate of investment on IT security per employee is the highest for large enterprises. The difference between small and medium businesses is less noticeable. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
More investments required 45% of the companies do not feel that the current rate of investment in IT security is sufficient. 40% of respondents feel that a 25% increase in funding is necessary. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Preparedness for different business risks Despite the fact that cyber threats are one of the top concerns for businesses, only 59% of companies feel that they are well-prepared for them. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Top seven measures taken to avert security risks Anti-malware protection is the most fully implemented security measure. Still, protection from malware has not been implemented completely by 30% of companies, and 3% have no protection at all. Firewall protection, data backup and regular software updates are also implemented quite commonly. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Banned and restricted user activities Companies are very cautious about new media; most of them ban or restrict access to social networking websites in some way. While file sharing remains the most restricted activity, social networks surpass even online gaming, instant messaging and personal e-mail communication. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Restrictions by country and economic type Social networking is seen as the second biggest threat globally, especially in the US, Russia and Brazil. Companies in developed countries pay less attention to restricting instant messaging, although it too may become a security threat. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Types of external threats experienced Malware is the most frequent reason behind security incidents, surpassing spam and phishing attacks. The top-five threats are all related to cyber security. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Data loss experienced The highest number incidents of data loss is also connected to malware, and in 31% of cases the security breach leads to sensitive data loss. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Knowledge of specific external threats Among the most identified threats are SpyEye, ZeuS and Stuxnet. However, only around half of respondents think that each of these threats puts their company in danger. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
Conclusion and recommendations Among businesses of all sizes around the world there is a solid level of awareness about IT security threats and the respective risks. Cyber threats are ranked as the most growing concern, confirmed by almost half of respondents. At the same time every second company evaluates its IT security budget as insufficient, with a 25% increase in funding seen as necessary. Anti-malware protection, being an essential part of business security, is implemented only in 70% of organizations. This has led to a situation where the majority of companies experienced an IT security breach in the last 12 months, and almost a third lost business information. Strong IT security across all business departments covering all endpoints is necessary to avoid major damage to a company. The number of cyber-threats, including targeted attacks, may lead not only to sensitive data loss –a company’s brand image can also be damaged, which is a top threat for the majority of businesses. At least half of the companies feel there is more work to be done. This includes increasing the number of IT security staff, raising the level of investment and implementing the newest solutions and technologies to protect a company’s business. Recommendations of Kaspersky Lab Choose a security solution that fits your business Investment in IT security is important, but the actual budget always depends on the size of your company. Choose a product that addresses all security issues and at the same time perfectly fits your business in terms of the number of endpoints, servers, etc. It is also necessary to be prepared for company growth. Thus, the right security product has to offer a good deal of scalability. Invest in employee education Overall, IT security really depends on how much end users know about cyber threats. They do not have to be experts, but it would be wise to spend the time and budget to make them learn more. Remember that the most damaging targeted attacks could never be performed without unintentional “help” from an employee. In other words, when staff think before opening a suspicious e-mail attachment, you save a great deal of money. Ensure effective anti-malware protection for all endpoints, including mobile devices Since the highest number of incidents are related to malware, effective protection has to be enforced for all endpoints. Although the majority of companies already use some kind of anti-malware solution, protection of all business branches with all potentially vulnerable endpoints is not common. This recommendation also applies to mobile devices, which are increasingly becoming points of vulnerability. The most effective solution is to expand a company’s security policies and introduce centralized control and malware protection for employees’ smartphones. Protection of sensitive data in case of device loss or theft is also recommended. Set up a centralized management system for all endpoint devices The number of endpoints is growing rapidly, so it is necessary to have a centralized management system to control all corporate devices. Small companies usually do not implement such a system, and at the same time they are the most vulnerable to cyber threats. It is recommended to use specialized small business solutions to protect and manage company endpoints in case of small companies. Protect end user communication instead of restricting it It might be possible to protect the corporate network from threats by further restricting end user activity. But it is more effective to protect communication of staff from links to infected and phishing websites. This kind of protection should cover the most frequently used means of communication, including e-mail and instant messaging. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.

Recommandé

Securité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForceSecurité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForcePatrick Bouillaud
 
Combating Cybersecurity Challenges with Advanced Analytics
Combating Cybersecurity Challenges with Advanced AnalyticsCombating Cybersecurity Challenges with Advanced Analytics
Combating Cybersecurity Challenges with Advanced AnalyticsCognizant
 
InformationSecurity_11141
InformationSecurity_11141InformationSecurity_11141
InformationSecurity_11141sraina2
 
AI-Cyber-Security-White-Papers-06-15-LR
AI-Cyber-Security-White-Papers-06-15-LRAI-Cyber-Security-White-Papers-06-15-LR
AI-Cyber-Security-White-Papers-06-15-LRBill Besse
 
idg_secops-solutions
idg_secops-solutionsidg_secops-solutions
idg_secops-solutionsJonny Nässlander
 
CompTIA Security Study [Report]
CompTIA Security Study [Report]CompTIA Security Study [Report]
CompTIA Security Study [Report]Assespro Nacional
 
2018 State of Cyber Resilience for Insurance
2018 State of Cyber Resilience for Insurance2018 State of Cyber Resilience for Insurance
2018 State of Cyber Resilience for InsuranceAccenture Insurance
 
The Security Challenge: What's Next?
The Security Challenge: What's Next?The Security Challenge: What's Next?
The Security Challenge: What's Next?Cognizant
 

Recommandé

Securité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForceSecurité : Le rapport 2Q de la X-Force
Securité : Le rapport 2Q de la X-ForcePatrick Bouillaud
 
Combating Cybersecurity Challenges with Advanced Analytics
Combating Cybersecurity Challenges with Advanced AnalyticsCombating Cybersecurity Challenges with Advanced Analytics
Combating Cybersecurity Challenges with Advanced AnalyticsCognizant
 
InformationSecurity_11141
InformationSecurity_11141InformationSecurity_11141
InformationSecurity_11141sraina2
 
AI-Cyber-Security-White-Papers-06-15-LR
AI-Cyber-Security-White-Papers-06-15-LRAI-Cyber-Security-White-Papers-06-15-LR
AI-Cyber-Security-White-Papers-06-15-LRBill Besse
 
idg_secops-solutions
idg_secops-solutionsidg_secops-solutions
idg_secops-solutionsJonny Nässlander
 
CompTIA Security Study [Report]
CompTIA Security Study [Report]CompTIA Security Study [Report]
CompTIA Security Study [Report]Assespro Nacional
 
2018 State of Cyber Resilience for Insurance
2018 State of Cyber Resilience for Insurance2018 State of Cyber Resilience for Insurance
2018 State of Cyber Resilience for InsuranceAccenture Insurance
 
The Security Challenge: What's Next?
The Security Challenge: What's Next?The Security Challenge: What's Next?
The Security Challenge: What's Next?Cognizant
 
2017 global-cyber-risk-transfer-report-final
2017 global-cyber-risk-transfer-report-final2017 global-cyber-risk-transfer-report-final
2017 global-cyber-risk-transfer-report-finalΔρ. Γιώργος K. Κασάπης
 
Before the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracksBefore the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracks- Mark - Fullbright
 
Volume2 chapter1 security
Volume2 chapter1 securityVolume2 chapter1 security
Volume2 chapter1 securityat MicroFocus Italy ❖✔
 
Top 3 security concerns for enterprises
Top 3 security concerns for enterprisesTop 3 security concerns for enterprises
Top 3 security concerns for enterprisesTaranggg11
 
1. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol21. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol2Adela Cocic
 
Maintain data privacy during software development
Maintain data privacy during software developmentMaintain data privacy during software development
Maintain data privacy during software developmentMuhammadArif823
 
Heidi
HeidiHeidi
Heidikategat
 
The 10 most trusted companies in enterprise security for dec 2017
The 10 most trusted companies in enterprise security for dec 2017The 10 most trusted companies in enterprise security for dec 2017
The 10 most trusted companies in enterprise security for dec 2017Merry D'souza
 
Online security – an assessment of the new
Online security – an assessment of the newOnline security – an assessment of the new
Online security – an assessment of the newsunnyjoshi88
 
McNair_Paper_Hill
McNair_Paper_HillMcNair_Paper_Hill
McNair_Paper_HillDennis Hill
 
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School FDMagazine
 
Data Security and Know-How Protection from PROSTEP
Data Security and Know-How Protection from PROSTEPData Security and Know-How Protection from PROSTEP
Data Security and Know-How Protection from PROSTEPJoseph Lopez, M.ISM
 
Information Security - Hiring Trends and Trends for the Future PDF
Information Security - Hiring Trends and Trends for the Future PDFInformation Security - Hiring Trends and Trends for the Future PDF
Information Security - Hiring Trends and Trends for the Future PDFAlexander Goodwin
 
A security requirement quality
A security requirement qualityA security requirement quality
A security requirement qualityijseajournal
 
Corporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameCorporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameTatainteractive1
 
DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014- Mark - Fullbright
 
The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018Insights success media and technology pvt ltd
 
Cyber Security Threats | IIA Boise Chapter
Cyber Security Threats | IIA Boise ChapterCyber Security Threats | IIA Boise Chapter
Cyber Security Threats | IIA Boise ChapterPatricia M Watson
 
Trafic.Ro Studii Demografice Noiembrie 2009 Femei
Trafic.Ro Studii Demografice Noiembrie 2009 FemeiTrafic.Ro Studii Demografice Noiembrie 2009 Femei
Trafic.Ro Studii Demografice Noiembrie 2009 FemeiConstantin Cocioaba
 
Barometrul blogosferei romanesti din luna Iunie 2011
Barometrul blogosferei romanesti din luna Iunie 2011Barometrul blogosferei romanesti din luna Iunie 2011
Barometrul blogosferei romanesti din luna Iunie 2011Constantin Cocioaba
 
Prezentare Power Camp
Prezentare Power CampPrezentare Power Camp
Prezentare Power CampConstantin Cocioaba
 
Traficro Studii Demografice Iunie 2009 Summary
Traficro Studii Demografice Iunie 2009 SummaryTraficro Studii Demografice Iunie 2009 Summary
Traficro Studii Demografice Iunie 2009 SummaryConstantin Cocioaba
 

Contenu connexe

Tendances

Before the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracksBefore the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracks- Mark - Fullbright
 
Top 3 security concerns for enterprises
Top 3 security concerns for enterprisesTop 3 security concerns for enterprises
Top 3 security concerns for enterprisesTaranggg11
 
1. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol21. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol2Adela Cocic
 
Maintain data privacy during software development
Maintain data privacy during software developmentMaintain data privacy during software development
Maintain data privacy during software developmentMuhammadArif823
 
The 10 most trusted companies in enterprise security for dec 2017
The 10 most trusted companies in enterprise security for dec 2017The 10 most trusted companies in enterprise security for dec 2017
The 10 most trusted companies in enterprise security for dec 2017Merry D'souza
 
Online security – an assessment of the new
Online security – an assessment of the newOnline security – an assessment of the new
Online security – an assessment of the newsunnyjoshi88
 
McNair_Paper_Hill
McNair_Paper_HillMcNair_Paper_Hill
McNair_Paper_HillDennis Hill
 
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School FDMagazine
 
Data Security and Know-How Protection from PROSTEP
Data Security and Know-How Protection from PROSTEPData Security and Know-How Protection from PROSTEP
Data Security and Know-How Protection from PROSTEPJoseph Lopez, M.ISM
 
Information Security - Hiring Trends and Trends for the Future PDF
Information Security - Hiring Trends and Trends for the Future PDFInformation Security - Hiring Trends and Trends for the Future PDF
Information Security - Hiring Trends and Trends for the Future PDFAlexander Goodwin
 
A security requirement quality
A security requirement qualityA security requirement quality
A security requirement qualityijseajournal
 
Corporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameCorporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameTatainteractive1
 
DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014- Mark - Fullbright
 
Cyber Security Threats | IIA Boise Chapter
Cyber Security Threats | IIA Boise ChapterCyber Security Threats | IIA Boise Chapter
Cyber Security Threats | IIA Boise ChapterPatricia M Watson
 

Tendances (18)

2017 global-cyber-risk-transfer-report-final
2017 global-cyber-risk-transfer-report-final2017 global-cyber-risk-transfer-report-final
2017 global-cyber-risk-transfer-report-final
 
Before the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracksBefore the Breach: Using threat intelligence to stop attackers in their tracks
Before the Breach: Using threat intelligence to stop attackers in their tracks
 
Volume2 chapter1 security
Volume2 chapter1 securityVolume2 chapter1 security
Volume2 chapter1 security
 
Top 3 security concerns for enterprises
Top 3 security concerns for enterprisesTop 3 security concerns for enterprises
Top 3 security concerns for enterprises
 
1. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol21. security 20 20 - ebook-vol2
1. security 20 20 - ebook-vol2
 
Maintain data privacy during software development
Maintain data privacy during software developmentMaintain data privacy during software development
Maintain data privacy during software development
 
Heidi
HeidiHeidi
Heidi
 
The 10 most trusted companies in enterprise security for dec 2017
The 10 most trusted companies in enterprise security for dec 2017The 10 most trusted companies in enterprise security for dec 2017
The 10 most trusted companies in enterprise security for dec 2017
 
Online security – an assessment of the new
Online security – an assessment of the newOnline security – an assessment of the new
Online security – an assessment of the new
 
McNair_Paper_Hill
McNair_Paper_HillMcNair_Paper_Hill
McNair_Paper_Hill
 
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
FDseminar IT Risk - Yuri Bobbert - Antwerp Management School
 
Data Security and Know-How Protection from PROSTEP
Data Security and Know-How Protection from PROSTEPData Security and Know-How Protection from PROSTEP
Data Security and Know-How Protection from PROSTEP
 
Information Security - Hiring Trends and Trends for the Future PDF
Information Security - Hiring Trends and Trends for the Future PDFInformation Security - Hiring Trends and Trends for the Future PDF
Information Security - Hiring Trends and Trends for the Future PDF
 
A security requirement quality
A security requirement qualityA security requirement quality
A security requirement quality
 
Corporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious GameCorporate Cybersecurity: A Serious Game
Corporate Cybersecurity: A Serious Game
 
DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014DATA PROTECTION & BREACH READINESS GUIDE 2014
DATA PROTECTION & BREACH READINESS GUIDE 2014
 
The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018The 10 most trusted cyber security solution providers 2018
The 10 most trusted cyber security solution providers 2018
 
Cyber Security Threats | IIA Boise Chapter
Cyber Security Threats | IIA Boise ChapterCyber Security Threats | IIA Boise Chapter
Cyber Security Threats | IIA Boise Chapter
 

En vedette

Trafic.Ro Studii Demografice Noiembrie 2009 Femei
Trafic.Ro Studii Demografice Noiembrie 2009 FemeiTrafic.Ro Studii Demografice Noiembrie 2009 Femei
Trafic.Ro Studii Demografice Noiembrie 2009 FemeiConstantin Cocioaba
 
Barometrul blogosferei romanesti din luna Iunie 2011
Barometrul blogosferei romanesti din luna Iunie 2011Barometrul blogosferei romanesti din luna Iunie 2011
Barometrul blogosferei romanesti din luna Iunie 2011Constantin Cocioaba
 
Traficro Studii Demografice Iunie 2009 Summary
Traficro Studii Demografice Iunie 2009 SummaryTraficro Studii Demografice Iunie 2009 Summary
Traficro Studii Demografice Iunie 2009 SummaryConstantin Cocioaba
 
Barometrul Ze List Octombrie 2009
Barometrul Ze List Octombrie 2009Barometrul Ze List Octombrie 2009
Barometrul Ze List Octombrie 2009Constantin Cocioaba
 
Pasiune si Ratiune in monetizarea retelelor sociale
Pasiune si Ratiune in monetizarea retelelor socialePasiune si Ratiune in monetizarea retelelor sociale
Pasiune si Ratiune in monetizarea retelelor socialeConstantin Cocioaba
 
Akamai - State of the Internet Q3 - 2009
Akamai - State of the Internet Q3 - 2009Akamai - State of the Internet Q3 - 2009
Akamai - State of the Internet Q3 - 2009Constantin Cocioaba
 
CFR Calatori - Conditii De Utilizare
CFR Calatori - Conditii De UtilizareCFR Calatori - Conditii De Utilizare
CFR Calatori - Conditii De UtilizareConstantin Cocioaba
 
Trafic.Ro Studii Demografice Noiembrie 2009
Trafic.Ro Studii Demografice Noiembrie 2009Trafic.Ro Studii Demografice Noiembrie 2009
Trafic.Ro Studii Demografice Noiembrie 2009Constantin Cocioaba
 
Studiu www.1424.ro nativii digitali si black friday 2013
Studiu www.1424.ro nativii digitali si black friday 2013Studiu www.1424.ro nativii digitali si black friday 2013
Studiu www.1424.ro nativii digitali si black friday 2013Constantin Cocioaba
 
Barometrul ZeList Septembrie 2009
Barometrul ZeList Septembrie 2009Barometrul ZeList Septembrie 2009
Barometrul ZeList Septembrie 2009Constantin Cocioaba
 
Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...
Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...
Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...Constantin Cocioaba
 
State of Social Media Employment 2013
State of Social Media Employment 2013State of Social Media Employment 2013
State of Social Media Employment 2013Constantin Cocioaba
 

En vedette (16)

Trafic.Ro Studii Demografice Noiembrie 2009 Femei
Trafic.Ro Studii Demografice Noiembrie 2009 FemeiTrafic.Ro Studii Demografice Noiembrie 2009 Femei
Trafic.Ro Studii Demografice Noiembrie 2009 Femei
 
Barometrul blogosferei romanesti din luna Iunie 2011
Barometrul blogosferei romanesti din luna Iunie 2011Barometrul blogosferei romanesti din luna Iunie 2011
Barometrul blogosferei romanesti din luna Iunie 2011
 
Prezentare Power Camp
Prezentare Power CampPrezentare Power Camp
Prezentare Power Camp
 
Traficro Studii Demografice Iunie 2009 Summary
Traficro Studii Demografice Iunie 2009 SummaryTraficro Studii Demografice Iunie 2009 Summary
Traficro Studii Demografice Iunie 2009 Summary
 
Barometrul Ze List Octombrie 2009
Barometrul Ze List Octombrie 2009Barometrul Ze List Octombrie 2009
Barometrul Ze List Octombrie 2009
 
Pasiune si Ratiune in monetizarea retelelor sociale
Pasiune si Ratiune in monetizarea retelelor socialePasiune si Ratiune in monetizarea retelelor sociale
Pasiune si Ratiune in monetizarea retelelor sociale
 
Akamai - State of the Internet Q3 - 2009
Akamai - State of the Internet Q3 - 2009Akamai - State of the Internet Q3 - 2009
Akamai - State of the Internet Q3 - 2009
 
CFR Calatori - Conditii De Utilizare
CFR Calatori - Conditii De UtilizareCFR Calatori - Conditii De Utilizare
CFR Calatori - Conditii De Utilizare
 
ZeList Monitor: BCR Refinantare
ZeList Monitor: BCR RefinantareZeList Monitor: BCR Refinantare
ZeList Monitor: BCR Refinantare
 
Trafic.Ro Studii Demografice Noiembrie 2009
Trafic.Ro Studii Demografice Noiembrie 2009Trafic.Ro Studii Demografice Noiembrie 2009
Trafic.Ro Studii Demografice Noiembrie 2009
 
Studiu www.1424.ro nativii digitali si black friday 2013
Studiu www.1424.ro nativii digitali si black friday 2013Studiu www.1424.ro nativii digitali si black friday 2013
Studiu www.1424.ro nativii digitali si black friday 2013
 
Barometrul ZeList Septembrie 2009
Barometrul ZeList Septembrie 2009Barometrul ZeList Septembrie 2009
Barometrul ZeList Septembrie 2009
 
Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...
Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...
Alexandru Negrea: "Prezenta si comportamentul bloggerilor la evenimentele din...
 
Re:Seminar - eMag ProfitShare
Re:Seminar - eMag ProfitShareRe:Seminar - eMag ProfitShare
Re:Seminar - eMag ProfitShare
 
Studiu Gfk TEMAX T2 2013
Studiu Gfk TEMAX T2 2013Studiu Gfk TEMAX T2 2013
Studiu Gfk TEMAX T2 2013
 
State of Social Media Employment 2013
State of Social Media Employment 2013State of Social Media Employment 2013
State of Social Media Employment 2013
 

Similaire à Kaspersky: Global IT Security Risks

12Cyber Research ProposalCyb
12Cyber Research ProposalCyb12Cyber Research ProposalCyb
12Cyber Research ProposalCybAnastaciaShadelb
 
IMC 618 - Public Relations Campaign
IMC 618 - Public Relations CampaignIMC 618 - Public Relations Campaign
IMC 618 - Public Relations CampaignStephanie Holman
 
Security - intelligence - maturity-model-ciso-whitepaper
Security - intelligence - maturity-model-ciso-whitepaperSecurity - intelligence - maturity-model-ciso-whitepaper
Security - intelligence - maturity-model-ciso-whitepaperCMR WORLD TECH
 
Ponemon 2015 EMEA Cyber Impact Report
Ponemon 2015 EMEA Cyber Impact Report Ponemon 2015 EMEA Cyber Impact Report
Ponemon 2015 EMEA Cyber Impact Report Graeme Cross
 
ADAM ADLER MIAMI
ADAM ADLER MIAMI ADAM ADLER MIAMI
ADAM ADLER MIAMI AdamAdler10
 
Pivotal Role of HR in Cybersecurity
Pivotal Role of HR in CybersecurityPivotal Role of HR in Cybersecurity
Pivotal Role of HR in CybersecurityMatthew Rosenquist
 
Cyber Security index
Cyber Security indexCyber Security index
Cyber Security indexsukiennong.vn
 
We are living in a world where cyber security is a top priority for .pdf
We are living in a world where cyber security is a top priority for .pdfWe are living in a world where cyber security is a top priority for .pdf
We are living in a world where cyber security is a top priority for .pdfgalagirishp
 
The Role of Technology in Modern Security Services Trends and Innovations.pdf
The Role of Technology in Modern Security Services Trends and Innovations.pdfThe Role of Technology in Modern Security Services Trends and Innovations.pdf
The Role of Technology in Modern Security Services Trends and Innovations.pdfMax Secure Ltd
 
Why Cybersecurity is a Data Problem
Why Cybersecurity is a Data ProblemWhy Cybersecurity is a Data Problem
Why Cybersecurity is a Data ProblemBernard Marr
 
Cyber Security small
Cyber Security smallCyber Security small
Cyber Security smallHenry Worth
 
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of CybercrimeCyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of CybercrimeErnst & Young
 
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of CybercrimeCyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of CybercrimeNishantSisodiya
 
Cybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesCybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesJoseph DeFever
 

Similaire à Kaspersky: Global IT Security Risks (20)

Get Prepared
Get PreparedGet Prepared
Get Prepared
 
Data Safety And Security
Data Safety And SecurityData Safety And Security
Data Safety And Security
 
IT Security Risks Survey 2014
IT Security Risks Survey 2014IT Security Risks Survey 2014
IT Security Risks Survey 2014
 
12Cyber Research ProposalCyb
12Cyber Research ProposalCyb12Cyber Research ProposalCyb
12Cyber Research ProposalCyb
 
12Cyber Research ProposalCyb
12Cyber Research ProposalCyb12Cyber Research ProposalCyb
12Cyber Research ProposalCyb
 
IBM X-Force.PDF
IBM X-Force.PDFIBM X-Force.PDF
IBM X-Force.PDF
 
IMC 618 - Public Relations Campaign
IMC 618 - Public Relations CampaignIMC 618 - Public Relations Campaign
IMC 618 - Public Relations Campaign
 
Security - intelligence - maturity-model-ciso-whitepaper
Security - intelligence - maturity-model-ciso-whitepaperSecurity - intelligence - maturity-model-ciso-whitepaper
Security - intelligence - maturity-model-ciso-whitepaper
 
Ics white paper report 2017
Ics white paper report 2017Ics white paper report 2017
Ics white paper report 2017
 
Ponemon 2015 EMEA Cyber Impact Report
Ponemon 2015 EMEA Cyber Impact Report Ponemon 2015 EMEA Cyber Impact Report
Ponemon 2015 EMEA Cyber Impact Report
 
ADAM ADLER MIAMI
ADAM ADLER MIAMI ADAM ADLER MIAMI
ADAM ADLER MIAMI
 
Pivotal Role of HR in Cybersecurity
Pivotal Role of HR in CybersecurityPivotal Role of HR in Cybersecurity
Pivotal Role of HR in Cybersecurity
 
Cyber Security index
Cyber Security indexCyber Security index
Cyber Security index
 
We are living in a world where cyber security is a top priority for .pdf
We are living in a world where cyber security is a top priority for .pdfWe are living in a world where cyber security is a top priority for .pdf
We are living in a world where cyber security is a top priority for .pdf
 
The Role of Technology in Modern Security Services Trends and Innovations.pdf
The Role of Technology in Modern Security Services Trends and Innovations.pdfThe Role of Technology in Modern Security Services Trends and Innovations.pdf
The Role of Technology in Modern Security Services Trends and Innovations.pdf
 
Why Cybersecurity is a Data Problem
Why Cybersecurity is a Data ProblemWhy Cybersecurity is a Data Problem
Why Cybersecurity is a Data Problem
 
Cyber Security small
Cyber Security smallCyber Security small
Cyber Security small
 
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of CybercrimeCyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
 
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of CybercrimeCyber Threat Intelligence − How to Get Ahead of Cybercrime
Cyber Threat Intelligence − How to Get Ahead of Cybercrime
 
Cybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & PracticesCybersecurity: Perceptions & Practices
Cybersecurity: Perceptions & Practices
 

Plus de Constantin Cocioaba

52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...
52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...
52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...Constantin Cocioaba
 
Cisco aniversează 20 de ani de prezență în România
Cisco aniversează 20 de ani de prezență în RomâniaCisco aniversează 20 de ani de prezență în România
Cisco aniversează 20 de ani de prezență în RomâniaConstantin Cocioaba
 
Infografic: 1 an de UBER în România
Infografic: 1 an de UBER în RomâniaInfografic: 1 an de UBER în România
Infografic: 1 an de UBER în RomâniaConstantin Cocioaba
 
Social Media Report 2015 (Republica Moldova)
Social Media Report 2015 (Republica Moldova)Social Media Report 2015 (Republica Moldova)
Social Media Report 2015 (Republica Moldova)Constantin Cocioaba
 
Catalog Flanco de Black Friday 2015
Catalog Flanco de Black Friday 2015Catalog Flanco de Black Friday 2015
Catalog Flanco de Black Friday 2015Constantin Cocioaba
 
Advertiseri mediatrust - septembrie 2015
Advertiseri mediatrust - septembrie 2015Advertiseri mediatrust - septembrie 2015
Advertiseri mediatrust - septembrie 2015Constantin Cocioaba
 
Peste o treime dintre gospodăriile din România dețin o tabletă
Peste o treime dintre gospodăriile din România dețin o tabletăPeste o treime dintre gospodăriile din România dețin o tabletă
Peste o treime dintre gospodăriile din România dețin o tabletăConstantin Cocioaba
 
Vodafone Romania la 30 iunie 2015
Vodafone Romania la 30 iunie 2015Vodafone Romania la 30 iunie 2015
Vodafone Romania la 30 iunie 2015Constantin Cocioaba
 
Orange România la 30 iunie 2015
Orange România la 30 iunie 2015Orange România la 30 iunie 2015
Orange România la 30 iunie 2015Constantin Cocioaba
 
Telekom România la 30 iunie 2015
Telekom România la 30 iunie 2015Telekom România la 30 iunie 2015
Telekom România la 30 iunie 2015Constantin Cocioaba
 
Planurile de consum ale romanilor releva intentia de a investi în tehnologie
Planurile de consum ale romanilor releva intentia de a investi în tehnologiePlanurile de consum ale romanilor releva intentia de a investi în tehnologie
Planurile de consum ale romanilor releva intentia de a investi în tehnologieConstantin Cocioaba
 
Studiu Gfk - Online Shopping (mai 2015)
Studiu Gfk - Online Shopping (mai 2015)Studiu Gfk - Online Shopping (mai 2015)
Studiu Gfk - Online Shopping (mai 2015)Constantin Cocioaba
 
Prezentare ZCM 2015 - Internet Rural
Prezentare ZCM 2015 - Internet RuralPrezentare ZCM 2015 - Internet Rural
Prezentare ZCM 2015 - Internet RuralConstantin Cocioaba
 

Plus de Constantin Cocioaba (20)

52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...
52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...
52% dintre angajati considera ca lucreaza mai bine singuri decat in echipa, a...
 
Nooka brochure
Nooka brochureNooka brochure
Nooka brochure
 
Cisco aniversează 20 de ani de prezență în România
Cisco aniversează 20 de ani de prezență în RomâniaCisco aniversează 20 de ani de prezență în România
Cisco aniversează 20 de ani de prezență în România
 
Infografic: 1 an de UBER în România
Infografic: 1 an de UBER în RomâniaInfografic: 1 an de UBER în România
Infografic: 1 an de UBER în România
 
Social Media Report 2015 (Republica Moldova)
Social Media Report 2015 (Republica Moldova)Social Media Report 2015 (Republica Moldova)
Social Media Report 2015 (Republica Moldova)
 
Catalog Flanco de Black Friday 2015
Catalog Flanco de Black Friday 2015Catalog Flanco de Black Friday 2015
Catalog Flanco de Black Friday 2015
 
Advertiseri mediatrust - septembrie 2015
Advertiseri mediatrust - septembrie 2015Advertiseri mediatrust - septembrie 2015
Advertiseri mediatrust - septembrie 2015
 
Peste o treime dintre gospodăriile din România dețin o tabletă
Peste o treime dintre gospodăriile din România dețin o tabletăPeste o treime dintre gospodăriile din România dețin o tabletă
Peste o treime dintre gospodăriile din România dețin o tabletă
 
Studiu Gfk Temax T2 2015
Studiu Gfk Temax T2 2015Studiu Gfk Temax T2 2015
Studiu Gfk Temax T2 2015
 
Prezentare YouYourself.ro
Prezentare YouYourself.roPrezentare YouYourself.ro
Prezentare YouYourself.ro
 
Genpact România
Genpact RomâniaGenpact România
Genpact România
 
Vodafone Romania la 30 iunie 2015
Vodafone Romania la 30 iunie 2015Vodafone Romania la 30 iunie 2015
Vodafone Romania la 30 iunie 2015
 
Orange România la 30 iunie 2015
Orange România la 30 iunie 2015Orange România la 30 iunie 2015
Orange România la 30 iunie 2015
 
Telekom România la 30 iunie 2015
Telekom România la 30 iunie 2015Telekom România la 30 iunie 2015
Telekom România la 30 iunie 2015
 
Planurile de consum ale romanilor releva intentia de a investi în tehnologie
Planurile de consum ale romanilor releva intentia de a investi în tehnologiePlanurile de consum ale romanilor releva intentia de a investi în tehnologie
Planurile de consum ale romanilor releva intentia de a investi în tehnologie
 
Studiu Gfk - Online Shopping (mai 2015)
Studiu Gfk - Online Shopping (mai 2015)Studiu Gfk - Online Shopping (mai 2015)
Studiu Gfk - Online Shopping (mai 2015)
 
Studiu GfK TEMAX T1 2015
Studiu GfK TEMAX T1 2015Studiu GfK TEMAX T1 2015
Studiu GfK TEMAX T1 2015
 
Gemius adMonitor - martie 2015
Gemius adMonitor - martie 2015Gemius adMonitor - martie 2015
Gemius adMonitor - martie 2015
 
Prezentare ZCM 2015 - Internet Rural
Prezentare ZCM 2015 - Internet RuralPrezentare ZCM 2015 - Internet Rural
Prezentare ZCM 2015 - Internet Rural
 
Infografic: Uber Bucuresti
Infografic: Uber BucurestiInfografic: Uber Bucuresti
Infografic: Uber Bucuresti
 

Dernier

Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Manik S Magar
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024Stephanie Beckett
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 

Dernier (20)

Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko"Debugging python applications inside k8s environment", Andrii Soldatenko
"Debugging python applications inside k8s environment", Andrii Soldatenko
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!Anypoint Exchange: It’s Not Just a Repo!
Anypoint Exchange: It’s Not Just a Repo!
 
What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024What's New in Teams Calling, Meetings and Devices March 2024
What's New in Teams Calling, Meetings and Devices March 2024
 
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 

Kaspersky: Global IT Security Risks

  • 1. Global IT Security Risks June 17, 2011 Kaspersky Lab leverages the leading expertise in IT security risks, malware and vulnerabilities to protect its customers in the best possible way. To ensure the most effective protection for businesses it is important for us to understand what IT managers think about security, how they deal with various problems, and what the main concerns are. In order to achieve better knowledge, we actively communicate with our clients and partners and align our strategy taking this feedback into account. This helps us a lot in developing the best security solutions for companies of all sizes and industries. To further study business needs, we initiated global research, covering various aspects of IT security. The research was performed in partnership with B2B International, one of the leading global research agencies. More than 1300 IT professionals in 11 countries participated in the survey. All of them influence IT policies and take part in evaluating security risks. The survey covers businesses of all sizes, starting from small (10-99 people) to medium (100-999) and large (1000+). A wide range of topics relating to IT security was covered, including wider business risks, actions taken to protect the business, and incidents that have occurred. Contents Main findings .................................................................................................................................. 3 IT security is the biggest concern ............................................................................................... 3 Top external threat: malware ...................................................................................................... 3 Cautiousness towards new media .............................................................................................. 3 Growth of mobile workforce is the next challenge ...................................................................... 3 Reluctance in adopting new technologies .................................................................................. 3 Anti-malware protection is a must .............................................................................................. 4 Proactive and reactive approaches to security threats ............................................................... 4 More IT security investments as part of the solution .................................................................. 4 In depth overview ........................................................................................................................... 5 Survey details ............................................................................................................................. 5 IT is a top-four strategic concern ................................................................................................ 6
  • 2. Main concerns of IT staff ............................................................................................................ 7 Future risks ................................................................................................................................ 8 Region-specific IT concerns ....................................................................................................... 9 Significant increase in the number of cyber-attacks ................................................................. 10 Most danger for developing countries and large corporations .................................................. 11 Average annual investment in IT security ................................................................................. 12 More investments required ....................................................................................................... 13 Preparedness for different business risks ................................................................................ 14 Top seven measures taken to avert security risks.................................................................... 15 Banned and restricted user activities........................................................................................ 16 Restrictions by country and economic type .............................................................................. 17 Types of external threats experienced ..................................................................................... 18 Data loss experienced .............................................................................................................. 19 Knowledge of specific external threats ..................................................................................... 20 Conclusion and recommendations ............................................................................................... 21 Recommendations of Kaspersky Lab ....................................................................................... 21 © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 3. Main findings IT security is the biggest concern IT strategy is one of the main concerns for businesses, ranked higher even than financial, marketing and human resources strategy. Almost half of all organizations see cyber-threats as one of the top-three developing risks. Wider business threats may also be a result of an IT security breach. These include damage to brands, espionage, and intellectual property theft. Meanwhile, businesses of all sizes have to deal with an ever-growing number of Internet- enabled devices, with the majority of “endpoints” connected to the Internet, especially in large corporations. Three quarters of all companies globally expect an increase in the number of devices in the next 12 months. A significant number of businesses have already become victims to cyber crime, including targeted attacks, events of corporate espionage and loss of sensitive intellectual property. This in turn leads to the conclusion that cyber threats have become much more important for business, which was confirmed by 46% of the organizations. 59% of companies report to be at least well-equipped against cyber threats. However, small businesses indicate a lower level of confidence. Almost half of the organizations have experienced an increase in the number of cyber- attacks against them in the last 12 months. Businesses are worried that cyber-attacks may involve organized criminal gangs and are concerned about government interference. As a result, prevention of IT security breaches was the #1 concern in all regions among IT staff. Top external threat: malware In the last 12 months 91% of companies have experienced at least one IT security event from an external source. The most common threat comes in the form of viruses, spyware and other malicious programs. 31% of malware attacks resulted in some form of data loss, with 10% of companies reporting loss of sensitive business data. The second most frequent accident is network intrusion; 44% of companies surveyed experienced a security issue related to vulnerabilities in existing software. 18% of the organizations also reported intentional leaks or data being shared by staff. Loss of sensitive data occurred in almost half of these cases. Security breaches most frequently result in the loss of financial data, followed by personal customer information, intellectual property, and employee information. Levels of sensitive data loss are much higher in developing markets. For example, 12% of companies experienced a loss of payment information, but in emerging markets 19% of organizations reported such an incident. While malware has proved to be the most effective weapon of the cyber- criminal, each of the Top-5 security threats are also related to IT security - surpassing “traditional” crime such as theft of hardware. Cautiousness towards new media Given the fact that knowledge about IT security threats among end users is lacking, companies restrict their activities in some way. Thus, 57% of organizations agreed that use of social media by employees introduces significant risks. 53% of companies have banned these kinds of services for end users, and a further 19% restricted access in some way. Social networking is the second most restricted activity, with the most restricted being file sharing; then comes video streaming, instant messaging, personal e-mail, and VoIP. Restrictions are most frequently applied in larger corporations. File sharing and social networking are also regarded by IT staff as the most potentially dangerous end user activities. Growth of mobile workforce is the next challenge The security of mobile devices is a new issue for businesses. 55% of the companies reported that they are much more concerned about this subject than they were a year ago. In fact, around a third of the workforce has been “mobile” for some time already. However, only 36% of companies have a fully implemented policy to deal with security off-site. Just 30% have separate policies for mobile devices, and even less require mobile data encryption. Companies that have taken the mentioned measures evaluate them as least effective. It is no surprise that a third of businesses think that mobile computing is too risky to adopt. There is no doubt that the number of mobile personnel will grow, so mobile devices should be guarded by the same security policies and solutions as traditional PCs. Reluctance in adopting new technologies © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 4. Emerging new technologies such as cloud-based services are evaluated as a possible new source of security risks. 42% of companies are occasionally reluctant to adopt new technologies because of the risks involved. Software-as- a-Service, being part of the new “cloud” trend, is considered to be an opportunity in terms of security by 38% of the companies. Organizations see this as a possible way to effectively “outsource” security issues to the service vendor. Still, some think that cloud computing is mostly a threat. Others are not sure, seeing both opportunities and threats. The number of companies that do not trust third-party suppliers of SaaS with data safety is still high (38%). Implementing SaaS solutions does not mean cancelling in-house security. There is no difference for cyber-criminals where to steal data from - be it on local or cloud infrastructure. Criminal techniques are mainly the same in both cases. Anti-malware protection is a must Protection from malware is the most commonly implemented measure among organizations across the world. It is placed among four core measures, taken by two-thirds of all companies. Anti-malware protection Client firewalls Data backup Patch/update management Still, only 70% of companies have implemented anti-malware protection fully across the business; 3% have no protection at all. The level of anti-malware implementation varies from country to country. In emerging markets 65% of companies have adopted it, while the UK and US show 92% and 82% levels of implementation, respectively. Another key feature of anti-malware protection is that companies of all sizes tend to implement it. It is also seen as the most effective measure along with data backup. Given the number of malware-related incidents, protecting business from this threat is absolutely necessary. Proactive and reactive approaches to security threats Just a little over half of companies evaluated themselves as highly organized and systematic in dealing with IT security threats. 33% possess the opposite, fatalistic attitude, arguing that many IT security events are unforeseeable and difficult to prevent. 28% indicated a somewhat complacent attitude. For them IT security breaches are things that “happen to others”, not themselves. The reactive approach is more popular: where companies invest in IT security only after an incident takes place. IT management in businesses using Kaspersky Lab products is more inclined to look for the newest solutions and technologies. But overall, this kind of attitude is not the norm. Using the latest technologies in IT security is important, and company-wide protection has to be implemented before sensitive data is compromised. More IT security investments as part of the solution Currently, the average sum of investments in IT security is reported to be €5,500 for small businesses, €58,000 for medium companies and €2.3 million for large corporations. Still, most organizations think that an increase in investment of 25% or more could be required. 45% think that current investment rates are inadequate. More than two thirds reported insufficient resources in terms of staff, systems or knowledge. 48% cited budget constraints as a barrier, and this number is significantly higher in developing countries. Generally, most of the companies think that extra investment in IT security is money well-spent (69%). But still there is a significant degree of misunderstanding of IT security among those who are in charge of budgets. 34% of company representatives think that senior management does not see IT security as a major problem. Likewise, there are signs of difficulties in explaining the importance of IT security to end users. Only 42% of respondents agreed that most employees are concerned about IT security. The same number of company representatives think that end users are knowledgeable about IT security threats. The survey showed up a great level of concern about IT security among IT managers in all types of businesses. Below you can find the detailed results of Kaspersky Lab’s research and our recommendations. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 5. In depth overview Survey details More than 1300 senior IT professionals from 11 countries took part in the survey. All respondents had an influence on IT security policy, and a good knowledge of both IT security issues of general business matters (finance, HR, etc.) Geographically, the survey was conducted in 11 countries, including both those with developing and mature economies. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 6. IT is a top-four strategic concern IT strategy was evaluated as one of the most important strategic concerns for businesses, along with operational strategy, development of new products and services and financial strategy. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 7. Main concerns of IT staff Preventing IT security breaches is the top concern for IT professionals. Understanding new technologies and finding possible ways to implement them is also in the top-three. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 8. Future risks Almost half of the companies see cyber threats as one of the top-three emerging risks. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 9. Region-specific IT concerns Prevention of IT security breaches was named a main concern in all countries, regardless of the market situation. For other issues there are significant differences between emerging and mature markets. For example, cost constraints are much more important in developed countries. At the same time companies in emerging markets pay more attention to IT-specific education of end users. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 10. Significant increase in the number of cyber-attacks Almost half of surveyed professionals reported an increase in the number of IT security accidents during the last 12 months. On the contrary, only 8% saw a decrease. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 11. Most danger for developing countries and large corporations While 48% of businesses reported an increase in number of cyber-attacks, figures for developing countries and large corporations are much higher. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 12. Average annual investment in IT security The rate of investment on IT security per employee is the highest for large enterprises. The difference between small and medium businesses is less noticeable. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 13. More investments required 45% of the companies do not feel that the current rate of investment in IT security is sufficient. 40% of respondents feel that a 25% increase in funding is necessary. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 14. Preparedness for different business risks Despite the fact that cyber threats are one of the top concerns for businesses, only 59% of companies feel that they are well-prepared for them. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 15. Top seven measures taken to avert security risks Anti-malware protection is the most fully implemented security measure. Still, protection from malware has not been implemented completely by 30% of companies, and 3% have no protection at all. Firewall protection, data backup and regular software updates are also implemented quite commonly. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 16. Banned and restricted user activities Companies are very cautious about new media; most of them ban or restrict access to social networking websites in some way. While file sharing remains the most restricted activity, social networks surpass even online gaming, instant messaging and personal e-mail communication. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 17. Restrictions by country and economic type Social networking is seen as the second biggest threat globally, especially in the US, Russia and Brazil. Companies in developed countries pay less attention to restricting instant messaging, although it too may become a security threat. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 18. Types of external threats experienced Malware is the most frequent reason behind security incidents, surpassing spam and phishing attacks. The top-five threats are all related to cyber security. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 19. Data loss experienced The highest number incidents of data loss is also connected to malware, and in 31% of cases the security breach leads to sensitive data loss. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 20. Knowledge of specific external threats Among the most identified threats are SpyEye, ZeuS and Stuxnet. However, only around half of respondents think that each of these threats puts their company in danger. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.
  • 21. Conclusion and recommendations Among businesses of all sizes around the world there is a solid level of awareness about IT security threats and the respective risks. Cyber threats are ranked as the most growing concern, confirmed by almost half of respondents. At the same time every second company evaluates its IT security budget as insufficient, with a 25% increase in funding seen as necessary. Anti-malware protection, being an essential part of business security, is implemented only in 70% of organizations. This has led to a situation where the majority of companies experienced an IT security breach in the last 12 months, and almost a third lost business information. Strong IT security across all business departments covering all endpoints is necessary to avoid major damage to a company. The number of cyber-threats, including targeted attacks, may lead not only to sensitive data loss –a company’s brand image can also be damaged, which is a top threat for the majority of businesses. At least half of the companies feel there is more work to be done. This includes increasing the number of IT security staff, raising the level of investment and implementing the newest solutions and technologies to protect a company’s business. Recommendations of Kaspersky Lab Choose a security solution that fits your business Investment in IT security is important, but the actual budget always depends on the size of your company. Choose a product that addresses all security issues and at the same time perfectly fits your business in terms of the number of endpoints, servers, etc. It is also necessary to be prepared for company growth. Thus, the right security product has to offer a good deal of scalability. Invest in employee education Overall, IT security really depends on how much end users know about cyber threats. They do not have to be experts, but it would be wise to spend the time and budget to make them learn more. Remember that the most damaging targeted attacks could never be performed without unintentional “help” from an employee. In other words, when staff think before opening a suspicious e-mail attachment, you save a great deal of money. Ensure effective anti-malware protection for all endpoints, including mobile devices Since the highest number of incidents are related to malware, effective protection has to be enforced for all endpoints. Although the majority of companies already use some kind of anti-malware solution, protection of all business branches with all potentially vulnerable endpoints is not common. This recommendation also applies to mobile devices, which are increasingly becoming points of vulnerability. The most effective solution is to expand a company’s security policies and introduce centralized control and malware protection for employees’ smartphones. Protection of sensitive data in case of device loss or theft is also recommended. Set up a centralized management system for all endpoint devices The number of endpoints is growing rapidly, so it is necessary to have a centralized management system to control all corporate devices. Small companies usually do not implement such a system, and at the same time they are the most vulnerable to cyber threats. It is recommended to use specialized small business solutions to protect and manage company endpoints in case of small companies. Protect end user communication instead of restricting it It might be possible to protect the corporate network from threats by further restricting end user activity. But it is more effective to protect communication of staff from links to infected and phishing websites. This kind of protection should cover the most frequently used means of communication, including e-mail and instant messaging. © 1997-2011 Kaspersky Lab ZAO. All Rights Reserved.