Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.
Main data theft threat is inside, overlooked
Posted on 12-Aug-2016 07:28 by Bill Bennett. | Tags Filed under: News.


Despite companies spending billions to protect systems from external threats, data theft continues to climb.

Businesses often fail to address the underlying problem: most online crime involves an insider. Although in most cases that insider is an unwitting accomplice.

The latest Ponemon Institute study shows companies are struggling to protect information from theft and other attacks.

Online crime wave

Simple data theft is climbing fast. The study, sponsored by Varonis security software company found 76 percent or three out of four organisations say they have been hit by the loss or theft of data in the past two years.

Last year 67 percent or two-thirds of companies reported they had suffered a loss.

Ransomware is among the fastest growing threat. Ponemon says Seventy-eight percent of companies worry that they may be attacked.

Inside job

Ponemon confirms what we all know, insiders are the biggest computer security threat. Yet employees are not necessarily criminals. The study found insider negligence is the biggest cause of the losses and is twice as common as deliberate inside theft.

Of those companies who have already been attacked, half say they were not aware of anything until 24 hours or more after the breach. Which means attackers can do a lot of damage before they are detected.

Vested interest

As is often the case with research into online security, the company sponsoring the study has a product that can help solve the identified problem. Varonis sells insider threat protection software and tools to help companies understand what happens.

Yet that naked self-interest doesn’t negate the study’s key point, that companies often give employees more access than they need to sensitive information and that makes them vulnerable.

You don’t need to spend a cent with Varonis to fix that.

On the subject of money, a separate report from Gartner says worldwide spending on information security will grow almost eight percent in 2016.

The total amount spent is expected to hit close to US$82 billion this year. Most of the money will go to security consulting firms and outsourcing services.

Shortage of security skill

According to Gartner the shortage of talented IT security professionals means companies will need to spend more on managed detection and managed response services. In other words, addressing the problems identified by the Ponemon-Varonis study.

Over the next four years Gartner says the spending focus will switch to security testing, IT outsourcing and data loss prevention (DLP).

The analyst firm also forecasts a bright short-term future for preventive security. It says: “many security practitioners continue to have a buying preference for preventive measures. However, solutions such as security information and event management (SIEM) and secure web gateways (SWGs) are evolving to support detection-and-response approaches”.

Gartner says the SWG market will growth between now and 2020 as organisations focus on detection and response.

Main data theft threat is inside and often overlooked was first posted at billbennett.co.nz


Filed under: Enterprise Tagged: business, security



comments powered by Disqus




Trending now »

Hot discussions in our forums right now:

Gareth Morgan is a genius
Created by Satch, last reply by dejadeadnz on 8-Dec-2016 23:08 (75 replies)
Pages... 3 4 5


NZ Prime Minister John Key Resigns
Created by ajobbins, last reply by elpenguino on 8-Dec-2016 23:43 (214 replies)
Pages... 13 14 15


The President Of The USA - Who do you think?
Created by TimA, last reply by DarthKermit on 8-Dec-2016 16:22 (909 replies)
Pages... 59 60 61


Dishwasher not Working Properly
Created by tdgeek, last reply by mdav056 on 5-Dec-2016 20:18 (28 replies)
Pages... 2


Wilson's Car Park - When Free is not free
Created by nzkiwiman, last reply by debo on 8-Dec-2016 23:01 (48 replies)
Pages... 2 3 4


Spark wireless broadband and home /lan access: CGNAT limitations
Created by yokkem, last reply by BarTender on 8-Dec-2016 15:57 (19 replies)
Pages... 2


Spark not planning to deploy native IPv6 at all. Ever.
Created by Erayd, last reply by sbiddle on 7-Dec-2016 20:57 (19 replies)
Pages... 2


JB Hifi Cost & GST Sale - 7th Dec
Created by Finch, last reply by Kopkiwi on 7-Dec-2016 15:11 (16 replies)
Pages... 2