Study Reveals that Cybersecurity Risks are Related to Web Browsers

Itbusinessnet.com reported on 5th May, 2015 stating the findings of a new survey of IT and information security professionals of Spikes Security and conducted by The Enterprise Strategy Group (ESG) to evaluate cybersecurity risks related to web browsers and organizational strategies to report them.

The study reveals that the effect of breaches accompanied with commonly-used web browsers is also compounded by ineffective policies which put too much freedom and control in the hands of end users.

The study surveyed 200 IT and information security professionals who are answerable for their organisation's security requirements for browsers installed on endpoint devices. All respondents were either employed with midmarket companies (defined as organisations with 100 to 999 employees consisting 31% of respondents) or enterprise organisations (defined as organisations with 1,000+employees consisting 69% of respondents).

Seventy-five percent of respondents said that avoidance and identification of breach is further difficult these days as compared to last two years. Out of these respondents, 59% confirm that malware has become more advanced since last two years in spite of the fact that 87% of organisations surveyed have spent more money to increase their endpoint protection during last two years.

The problem is more complicated by the fact that 84% of organisations generally allow numerous browsers to be installed at the final stage which are main routes for attacking the target.

Department of IT certainly try to reduce the chances of such attacks as 85% confirm that their departments function to update patches and browsers and 84% observe configurations of browser for vulnerabilities. Obviously, 82% of respondents are also worried of files containing malicious content which are downloaded through browsers.

Infosecurity-magazine.com published news on 5th May, 2015 quoting Jon Oltsik, Senior Principal Analyst of the Enterprise Strategy Group, as saying "Here, one main finding is that there seems to be much more time and effort spent to secure a browser which is naturally a insecure one.

Oltsik added that in spite of all efforts to remain on top of updates and patches and also having spent more at the last stage of security products which should detect malware, IT organisations are getting frustrated in trying to remain ahead of cybercriminals.

» SPAMfighter News - 5/20/2015