Kaspersky Lists Frequent Mistakes in IT Security
Kaspersky, which recently conducted a research on common errors of IT Security policy, provides a more intensive insight into the reasons for vulnerability of corporate networks. Webafrica reported this on July 7, 2011.
Stated Head of the Global Emergency Response Team Alexey Polyakov of Kaspersky Lab, during the earlier times, Kaspersky's support team for corporate affairs got complaints that didn't relate to product performances. Webafrica published this.
Polyakov continued that following a few rapid analysis, his team found that truly enough and without exaggeration, the products effectively identified as also eliminated malware; however, the malicious software repeatedly returned. Thus during the past twelve months, the team vigorously worked with its large business clients and observed that the larger proportion of malware-associated attacks happened because of problems associated with underestimated design alternatively loopholes within business security policies that went unnoticed, he added.
States Kaspersky, the greatest error involves overlooking rights for accessing network share -accounting for 35% of all incidences. During such instances, sharing maybe open having access privileges set to the configuration of "full access" for all users who're on their desktops alternatively a file server internal to the organization.
Moreover as per Kaspersky, current period's malware exploit existing software flaws with which organizations aren't forever ready. Any network having even one patch missing may become severely endangered, while the problem is very common within SMBs whose clients count below 500. This error accounts for 25% of all incidences.
Furthermore, suppose an end-user utilizes anti-malware software from several suppliers, it may result in circumstances wherein malware-attack mitigation may become harder. The problem accounts for 15% of all incidences.
Also, there can be an environment wherein anti-virus is loaded onto the network partially, while the remaining resources stay un-safeguarded. Such environments account for 15% of all incidences.
Next, there maybe firmware flaws (accounting for 5% of all incidences) that cyber-criminals abuse incase security administrators miss on supervising hardware tools like firewalls, routers or any other network device for finding out whether they require patch fixing.
Lastly, one more comparatively infrequent error (accounting for 5% of all incidences) is taking software downloads online for granted.
» SPAMfighter News - 21-07-2011