Businesses don’t improve security despite increased targeted threats

46 percent of U.S. SMBs have fallen victim to cybercrime, up two percent from last year’s Panda Security survey. The 2010 survey revealed there has been little to no improvement from last year in SMBs using industry standard protection methods.

Thirty-one percent of businesses are operating without anti-spam, 23 percent have no anti-spyware and 15 percent have no firewall.

Additional findings include the following:

Investment in security

• Security budgets remain about the same as last year, although when asked if they had anyone dedicated to security management, only 63 percent of companies in the U.S. confirmed they had
• Thirteen percent of U.S. SMBs are operating without security systems in place at all. Fifty-seven percent of this group reported the reason for lacking security was that it is viewed as not important or necessary
• Of the companies that do have protection in place, 36 percent of U.S. SMBs said they were using free solutions that are designed for home users. Ninety-seven percent said they have installed an anti-virus solution on their computers. However, 12 percent admitted these systems were out of date
• The most widely used security solutions are anti-virus and firewall products, while anti-spam solutions are not extensively implemented.

Infections

• The infection ratio at U.S. companies has slightly increased since last year (46 percent in 2010 compared to 44 percent in 2009). It has dropped in Europe (49 percent in 2010 compared to 58 percent in 2009)
• U.S. SMBs named the Internet and USBs/external memory devices as the top methods for computer infections to enter the company (32 percent). E-mail (21 percent) and downloads/P2P (14 percent) were the other popular infection points
• Viruses are the most popular threat SMBs are encountering (45 percent), followed by spyware (23 percent).