Small Businesses Doubt Effectiveness of Existing Security Set Up
A recent study by eMediaUSA conducted for GFI Software proves that almost 50% of small firms in the US think that workers with better knowledge on security problems and the role they play in a firm's IT system would assist in amending network safety, and every fourth person believes that management should be conscious of security problems and risks.
During a survey of around 455 firms varying from one to 500 employees discovered that 32% of small and medium businesses (SMBs) have undergone some kind of security violation in the preceding year (2006), and these violations are modifying the industry's standpoint on security products and tools.
It might imply that SMBs are beginning to have apprehensions about the efficiency of conventional line of security devices in defending them from further security risks, in addition to data loss and network violations. The outcomes point toward a definite change in SMBs' level of confidence on their IT security.
Users can be regarded as the least certain and disciplined security flaw. In most of the cases, lack of fundamental security rationale and measures are the major reasons of security violations, instead of malevolent acts which can by no means be overlooked, remarked GFI Software's Director of Engineering, Andre Muscat, as reported by Darkreading on December 11, 2007.
SMBs' outlook may have changed because of their own familiarity with violations. Almost 70% of responders told that a malevolent program had compromised their computers over the last one year, and 30% stated they have downloaded corrupt web files. Nearly 24% have misplaced computer hardware, like laptops, storing company data.
Moreover, SMBs are reacting to the danger. About 38% of the polled interviewees said that they are expending between 11 to 30% of their IT funds on security and majority of the companies intend to follow their expenditure patterns next year.
eMediaUSA also exposed that viruses inserted via e-mails leads the list of 'largest threat to network security'. It is one of the unproblematic strike paths and responders who had notified an attack supported this. Although firms are dealing with trojans and malware, they seem to be giving little attention to other similar dangers like data loss and thievery from endpoints like connected USB flash drives, PDAs and iPods on the network.
Related article: Small Organizations Too Can Be Hackers’ Target
» SPAMfighter News - 23-12-2007