Insiders the biggest data security threat
By Miya Knights,
Insiders pose the biggest threat to data security, according to a new report published today.
The research, based on a poll of 3,596 IT professionals in the US, UK, France and Germany carried out by the Ponemon Institute, found data breaches by hackers ranked a distant fifth in terms of security threats.
Negligence on the part of insiders was seen by far and away as the most dangerous, where US respondents said 75 percent of all breaches were the fault of insiders compared to hackers, who were responsible for just one per cent. The UK came in a close second with 63 per cent of breaches blamed on those from inside the organisation.
Overall, 63 per cent of respondent said their organisations suffered data breaches caused by negligent insiders and 37 per cent had been caused by malicious insiders.
More than half (55 per cent) of UK IT practitioners reported that their organisation had experienced one or more data breaches involving the loss or theft of information about individuals such as consumer data, customer information, employee records.
But it was when looking at where data breaches occurred that the study uncovered some concerning statistics. It found that 41 per cent of all data breaches occurred in a mainframe environment, as opposed to the removable and mobile media so many of the data breaches that come to public attention are attributed to.
The study said this was most worrying because more than 80 per cent of the world’s corporate and governmental data resides on mainframes according to the Computer and Communications Industry Association (CCIA), .
Atul Bhovan, senior technical consultant at the research sponsor, Compuware told IT PRO that the deterrent just isn’t there to stop people waking out of the building with sensitive and confidential data.
“Monitoring is critical as it will provide often absent visibility of who is accessing data and what they are doing with it and serve as an important deterrent against unauthorised data removal or carelessness,” he said.
Bhovan added that the biggest enemy in data security is complacency, where all offline data should be encrypted, for instance, but is not. “Many companies lack the experience and guidance to implement a full-proof technology solution to combat data loss,” he said. “Companies need to look at how security solutions can be used within their own business to protect information.”
Related Tags
advertisement
Latest Security Features
How to be a successful online fraudster
Ever wanted to know how easy it is to be an identity thief and earn a fortune? IT PRO reveals all…
- What you need to know about ID cards
- Lessons to learn from a year of data breaches
- Q&A: DNS inventor Paul Mockapetris
- Is the password ill-equipped for the modern world?
- Why is backing up given short shrift?
- Defending Europe against cyber attack
- The present and future of IT security
- I’m an IT manager, get me out of here!
- IT around the world: Russia
Latest Security Reviews
Fortinet FortiGate-3810A
Rating: 
- Clearswift MIMEsweeper Web Appliance ENW
- NetASQ U6000 UTM appliance
- AVG Internet Security SBS Edition 8.0
- Finjan Vital Security Web Appliance NG-6000S
- LogLogic MX2010
- Exclusive: WatchGuard Firebox Core X750e
- Sophos ES4000 Security Appliance
- Microsoft Forefront Security for Exchange and SharePoint
- EXCLUSIVE: Juniper Networks SSG 550 UTM appliance
advertisement
Latest News Videos in Security
Video: Eugene Kaspersky outlines security threats
PlayIT PRO speaks to Eugene Kaspersky, chief executive and founder of Kaspersky Lab.
White papers
Want more background on today's hottest IT trends?
Visit IT PRO's white paper library for more on virtualisation, encryption and other topics.
Register for IT PRO
You'll get exclusive member benefits including free white papers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
Social Bookmark this article: What is this?