Latest news
There is a rising concern over the risk of cyber warfare and its affect on the British economy, highlighted by an estimated cost to the country of £27bn a year from attacks on computer systems, industrial espionage and theft of intellectual property. According to last year’s ‘Cost of Cyber Crime’ report the country's business sector is the worst affected, losing £21bn a year in revenue.
As a result, businesses are starting to recognise that targeted attacks are a serious issue not just affecting their bottom line but also their customers, suppliers and employees.
A recent report by Gartner has predicted that the worldwide spend on IT security is in the midst of an 8.4 percent increase, and is expected to continue to rise through 2016. According to the report almost 45 percent of CIOs interviewed anticipated increases to their security budgets, while 50 percent expected their security budgets to remain level.
These results support the observation that businesses are beginning to wake up to the seriousness of cyber attacks... But are they making intelligent security investments in IT?
The basics
In order for businesses to protect themselves effectively they need to acknowledge and understand the threat landscape. However, to understand this landscape companies need to initially look within their organisation.
It is instinctive to look outside the business when trying to identify potential security issues, but the harsh reality is that the biggest threat to most organisations is internal.
Staff are unlikely to ever intentionally compromise network security, but there are any number of ways that their accidental behaviour may impact the security systems that have cost so much time and money to put in place. As well as guarding against external attacks such as hackers and viruses, it is essential to understand how employees interact with the IT network and to invest in measures that stop them from putting it at risk.
Bring your own danger
In businesses of all sizes and across all sectors, employees are increasingly bringing their personal mobile devices into work and using them to access corporate data. With this huge shift in how employees are accessing company data, businesses worldwide are in a state of uncertainty around if, and how, to protect their networks against the threats brought about by this influx of mobile devices.
Spotlight
Is it time to professionalize information security?
Posted on 23 May 2013. | The issue of whether or not information security professionals should be licensed to practice has already been the topic of many a passionate debate.
Review: Logging and Log Management
Posted on 22 May 2013. | Every security practitioner should be aware of the overwhelming advantages of logging and perusing logs for discovering system intrusions. But logging and log management comes with its own set of difficulties.
Experts highlight top data breach vulnerabilities
Posted on 22 May 2013. | Hidden vulnerabilities lie in everyday activities that can expose personal information and lead to data breach, including buying gas with a credit card or wearing a pacemaker.
A closer look at Mega cloud storage
Posted on 21 May 2013. | Once a novelty, nowadays many cloud storage services are fighting for their piece of the market in the virtual world. Mega offers 50GB of free space with great pricing on Pro accounts.
The CSO perspective on healthcare security and compliance
Posted on 20 May 2013. | Randall Gamby is the CSO of the Medicaid Information Service Center of New York. In this interview he discusses healthcare security and compliance challenges and offers a variety of tips.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
