Latest news
Beginning October 1, Nevada state law will require all businesses to employ an encryption tool for any electronic transmission that includes a customer’s personal information. According to a new study entitled “Joint Research Report: Encryption Solution Implementation Landscape” conducted by Osterman Research on behalf of CertifiedMail, Nevada companies will be a step ahead when it comes to protecting customers’ personal data.The study findings indicate that, despite the availability of easy-to-use encryption solutions, data privacy is still being compromised for a number of reasons.
Of the 205 enterprises surveyed, key findings include:
- 47% do not have the ability to send encrypted email directly from their desktop.
- Only 45% can send encrypted email manually through their email client.
- Only 13% can send encrypted emails automatically through some sort of policy-based encryption capability.
- Osterman Research found that 27% of organizations had experienced an accidental or malicious data leak during the previous 12 months.
- Among those respondents that can send a manually encrypted email, 22% found doing so somewhat difficult or difficult, while another 44% consider sending encrypted email manually to be “not too difficult”. Much of the belief that encrypted email is generally difficult to use arises from the legacy of difficult-to-use, difficult-to-manage and expensive infrastructures that were not scalable and caused other problems. While today’s encrypted email systems are substantially easier to use than early-generation systems, the legacy continues to hold true for many decision makers.
- The market of frequent encrypted email users – those who would be the primary drivers for the adoption of encrypted email in most organizations – comprise 18% of total email users. Occasional users, comprise another 31% of users, while infrequent users comprise the remaining roughly one-half (51%) of users.
- Survey respondents indicated that if encrypting an email could be accomplished by simply clicking a button in the email client, “infrequent” users would likely use encryption frequently for all types of communications, even those that contained only moderately sensitive content. Nearly one-half of users want to have automatic encryption capabilities.
Spotlight
The security of WordPress plugins
Posted on 18 June 2013. | Checkmarx’s research lab identified that more than 20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks, such as SQL Injection.
Information security executives need to be strategic thinkers
Posted on 17 June 2013. | George Baker, the Director of Information Security at Exostar, talks about the challenges in working in a dynamic threat landscape, offers tips for aspiring infosec leaders, and more.
Large orgs in denial about own security breaches?
Posted on 14 June 2013. | Over two thirds (66%) of large organizations said they either had not experienced a security incident in the last 12-18 months or were unsure if they had.
Vulnerability scanning with PureCloud
Posted on 12 June 2013. | nCircle PureCloud is a cloud-based network security scanning product built upon the companies' vulnerability and risk management system IP360.
Reactions from the security community to the NSA spying scandal
Posted on 11 June 2013. | Read on for comments on this scandal that Help Net Security received from a variety of security professionals and analysts.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
