Latest news
Growing security demands, old security infrastructure
Posted on 13 June 2012.
SMBs are struggling to keep IT infrastructures up to date with current working practices and more advanced threats, according to Sophos.
According to the survey, 93 percent of SMBs are integrating remote working policies into their security provision, with more than half of respondents (52 percent) expecting to improve security precautions to mitigate additional risks posed by remote working. Wireless networks are also an issue, with only a fifth (21 percent) being very confident in their security.
The research also found that, on average, firewalls were five years old, and that one in five respondents had suffered a network outage caused by a malware infection in the last 12 months. Both highlight the daunting task of keeping up with the latest technologies and threats.
Other findings from the research include:
Growing threats and unprepared networks are particularly troubling, given the breadth of challenges that are now facing SMBs. With regard to network security, 44 percent of respondents cited the growing need to use cloud-based services as a major concern; 39 percent were worried about sophisticated threats; 39 percent about managing mobile devices; and a further 35 percent saw data loss as a significant challenge.
These concerns are justified given that one in five of those surveyed had been infected by malware that brought down their network within the last 12 months. With the increased frequency of cyber attacks and methods to penetrate the corporate network, improvements need to be made across the board.
"Companies are reevaluating how they tackle IT security. A fragmented approach is consistently leaving networks vulnerable to attack, as new technologies such as cloud, and new devices such as mobile, require more advanced security architectures," continued Eschelbeck. "For many, it is time to take a more holistic approach to IT security, one that ensures all elements of protection function seamlessly together."
The research also revealed some encouraging statistics, in particular regarding IT budgets. Nearly half (44 percent) pointed to investment in IT, including virtualisation (48 percent), cloud computing (44 percent), remote working (44 percent) and improvements to the wireless network (49 percent). The vast majority (70 percent) of companies are also planning to support this with further investment in security.
"It is encouraging to see companies planning to invest in IT infrastructure. Any technology additions will have a significant impact on the security infrastructure, and with 70 percent planning to increase their IT security budget in the coming year, it is vital that this investment ensures the security fabric of the entire business is as robust as possible and able to support new and evolving technologies," concluded Eschelbeck.
According to the survey, 93 percent of SMBs are integrating remote working policies into their security provision, with more than half of respondents (52 percent) expecting to improve security precautions to mitigate additional risks posed by remote working. Wireless networks are also an issue, with only a fifth (21 percent) being very confident in their security.
The research also found that, on average, firewalls were five years old, and that one in five respondents had suffered a network outage caused by a malware infection in the last 12 months. Both highlight the daunting task of keeping up with the latest technologies and threats.
Other findings from the research include:
- More than a third (36 percent) of businesses struggle with applying consistent security policies across all offices
- More than a third (37 percent) of wireless networks provide only an 'acceptable' level of coverage at best
- When choosing a network security solution, the highest priority for SMBs is a low cost of ownership (30 percent), followed by ease of use (24 percent), and support offered (22 percent)
- 34 percent of respondents had their network firewall for five years or more.
Growing threats and unprepared networks are particularly troubling, given the breadth of challenges that are now facing SMBs. With regard to network security, 44 percent of respondents cited the growing need to use cloud-based services as a major concern; 39 percent were worried about sophisticated threats; 39 percent about managing mobile devices; and a further 35 percent saw data loss as a significant challenge.
These concerns are justified given that one in five of those surveyed had been infected by malware that brought down their network within the last 12 months. With the increased frequency of cyber attacks and methods to penetrate the corporate network, improvements need to be made across the board.
"Companies are reevaluating how they tackle IT security. A fragmented approach is consistently leaving networks vulnerable to attack, as new technologies such as cloud, and new devices such as mobile, require more advanced security architectures," continued Eschelbeck. "For many, it is time to take a more holistic approach to IT security, one that ensures all elements of protection function seamlessly together."
The research also revealed some encouraging statistics, in particular regarding IT budgets. Nearly half (44 percent) pointed to investment in IT, including virtualisation (48 percent), cloud computing (44 percent), remote working (44 percent) and improvements to the wireless network (49 percent). The vast majority (70 percent) of companies are also planning to support this with further investment in security.
"It is encouraging to see companies planning to invest in IT infrastructure. Any technology additions will have a significant impact on the security infrastructure, and with 70 percent planning to increase their IT security budget in the coming year, it is vital that this investment ensures the security fabric of the entire business is as robust as possible and able to support new and evolving technologies," concluded Eschelbeck.
Spotlight
The security of WordPress plugins
Posted on 18 June 2013. | Checkmarx’s research lab identified that more than 20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks, such as SQL Injection.
Information security executives need to be strategic thinkers
Posted on 17 June 2013. | George Baker, the Director of Information Security at Exostar, talks about the challenges in working in a dynamic threat landscape, offers tips for aspiring infosec leaders, and more.
Large orgs in denial about own security breaches?
Posted on 14 June 2013. | Over two thirds (66%) of large organizations said they either had not experienced a security incident in the last 12-18 months or were unsure if they had.
Vulnerability scanning with PureCloud
Posted on 12 June 2013. | nCircle PureCloud is a cloud-based network security scanning product built upon the companies' vulnerability and risk management system IP360.
Reactions from the security community to the NSA spying scandal
Posted on 11 June 2013. | Read on for comments on this scandal that Help Net Security received from a variety of security professionals and analysts.
Daily digest
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
Weekly newsletter
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
