Fortune 1000 Organizations Bear Greater Possibilities of Encountering Data Hacks
Bitsight the security ratings company by their latest research finds that Fortune 1000 corporate houses bear a bigger risk of being targeted with cyber-attacks in comparison with other types of businesses. That's because the databases Fortune 1000 companies maintain are business critical while their security strategies aren't sufficiently strong.
Bitsight studied F1000 enterprises' security performance with the aid of one sample comprising 2,500 such enterprises randomly chosen and weighed their security outcomes against those of non-Fortune 1000 companies which have 2,500-or-more employees.
Bitsight co-founder Stephen Boyer says a proper comprehension of the advanced security F1000 organizations maintain can much help other organizations that seek towards setting a scale of their own security accomplishments. Besides, the knowledge can make other companies better informed about various dangers they could encounter while they use the same network access or data that F1000 companies use. For, F1000 businesses very often face system compromises. Also, knowledge of attack detections along with intermediate parties' response practices would play significantly in selecting new vendors.
During a year-and-quarter last one F1000 company in every twenty encountered data-hack that was subsequently disclosed to the public. The rate was almost twice that of non-F1000 businesses. The security performance of F1000 organizations ordinarily dropped too, albeit for 52 companies it increased, and for 103, the ratings dropped during Oct 2016-Jan 2017.
According to Boyer, the above is likely because F1000 companies own and use databases which put an obligation on them from the legal aspect towards reporting a hack. Darkreading.com posted this, March 8, 2017.
Boyer continues that plentiful organizations as well don't properly make their online activities secure. The majority of F1000 organizations operate Telnet via open ports. Thus, when remote administration facilities are unencrypted, it helps cyber-criminals access communications alternatively regulate systems remotely.
Boyer contends as these services can be fairly protected with a VPN/firewall, the attacks on the organizations show the problems with their security programs are far larger.
Hence, F1000 companies must concentrate the maximum to detection of incidences and response to them. Boyer adds that organizations which fast remediate their system compromises will likely have lower possibilities of data-hacks followed with exfiltration.
» SPAMfighter News - 14-03-2017