A recent survey conducted by Kaspersky Lab of 5,274 IT business decision makers found that 42 percent are not sure of the most effective strategy to combat targeted attacks. Sixty three percent among respondents are IT security experts.
Seventy seven percent mentioned that they have experienced the security incident in last 12 month. Fifty seven said they have experienced breach at some point. The survey also showed that there is rise of 6 percent in the attack in last one year. Two thirds believe that the the threats are becoming complex.
Fifty two percent failed to show difference between normal and complex attack. Fifty six percent said that they need better tools to tackle targeted attacks. Fifty three percent agree that they need specialists for threat hunting.
“Now that companies are starting to realize that cyber security breaches are a real risk to their business continuity, it’s time to give incident response the attention it deserves,” Alessio Aceti, head of Kaspersky Lab’s enterprise business division mentioned in a statement.
“It can no longer be a small part of the IT security department’s responsibilities, and should instead involve strategic planning and investment at the highest level,” Aceti added. “For organizations, this doesn’t mean becoming risk-free but it will certainly help to become risk-ready and survive a serious breach when it happens.”
Another survey conducted by RiskIQ research on leading U.K. companies showed that 3,315 live websites has 35 expired certificates, 250 untrusted certificates, 171 servers with known vulnerabilities, and 68 frameworks with known vulnerabilities.
More than 13,194 instances of data collection through login or input forms is found.
“We have recently seen the consequence of Equifax losing control of its infrastructure and Web assets before falling victim to cybercrime and impacting millions of customers,” RiskIQ vice president EMEA Fabien Libeau said in a statement. “It is crucial that other organizations don’t follow suit by ensuring their digital attack surface is constantly monitored, kept under control and secure from cyber adversaries on the prowl.”
Chris Olson, CEO of The Media Trust, told eSecurity Planet that “The heart of the matter is a general failure to appreciate the highly dynamic nature of these consumer-facing digital assets and their reliance on third parties to help render the visitor experience,” he said.
“As a significant amount of vulnerability resides in not knowing these third parties exist, let along analyzing their activity, companies would be better served controlling what they allow to execute in their digital environment,” Olson added.
____________________________________________________________________________________________
AlertSec ACCESS is a patent pending technology designed to check that devices are encrypted before access to a network is granted. Encrypted devices secure your data even if they are lost or stolen.