Cyber-tension between nations fuels public desire for action

The UK public is growing increasingly concerned about national cyber security, following the number of high profile security incidents and malware discoveries reported this year, according to LogRhythm.

In a survey of 1,000 consumers, 65 percent of respondents stated that pre-emptive strikes on enemy states that pose a credible threat to national security are justified, and of those, 46 percent believe it depends on the level of threat posed.

Of those surveyed, 45 percent believe that the UK government needs to step up its protection of national assets and information against cyber security threats, and 43 percent think that the threat of international cyber war and cyber terrorism is something that needs to be taken very seriously now.

Meanwhile, just 18 percent considered pre-emptive attacks on enemy states to be unjustified, with a mere 12 percent believing that the government is doing enough to protect the nation from cyber security threats.

“The issue of international cyber espionage, as well as the development of increasingly malicious malware such as Flame, Gauss and Stuxnet have unsurprisingly started to seep into public consciousness – leading to increased calls for urgent action,” said Ross Brewer, vice president and managing director for international markets at LogRhythm.

“However, after any security incident there is usually much speculation and uncertainty of the origin. As such, the typical knee-jerk reaction of blindly attacking the networks of potential perpetrators could incite disturbing consequences such as the execution of even more sophisticated attacks on the UK’s critical infrastructure,” he added.

Research also provided an insight into public concern about the security of personal data. The majority of those surveyed (80 percent) do not trust organisations to keep their data safe, ranking social networks and gaming sites the least trustworthy organisations. 64 percent of respondents believe that organisations across all industries are not doing enough to keep their data safe, and nearly half (41 percent) feel that it has become inevitable their data will be compromised by hackers.

“Since 2011, the same percentage of respondents had concerns over the ability of organisations to safeguard their data – suggesting that we could have reached a plateau of distrust. The fact that gaming and social networking have been called out as the worst perceived culprits could be in response to widely-reported breaches and privacy issues across these sectors during 2012.”

Respondents also believed that whenever an organisation is compromised and their personal data is put at risk, they should be informed as soon as possible. More than two thirds (67 percent) demand to be told immediately, with almost a fifth (19 percent) prepared to wait until after the breach has been investigated.

In terms of the penalties handed to organisations found to have lax security, 46 percent believe they should be punished more severely, with a quarter claiming that penalties are handed out unevenly across different organisations and industry sectors.

“Businesses and government organisations clearly need to do more to reassure consumers that they are capable of handling personal information with the appropriate care, if they are to rebuild the confidence that has clearly eroded over the past couple of years,” continued Brewer.

“There is still a frustrating over-reliance on perimeter defences, despite the fact that they have repeatedly proven inadequate in securing IT systems, and this must change. In the same breath, the ICO needs to ensure that its bite is just as bad as its bark by handing out appropriate fines to any organisation that fails to demonstrate appropriate data defences. Only then will organisations get better at data security, hopefully leading to increased consumer confidence.”