IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Companies still clueless on security?

Surveys find half of laptops not protected and a lack of cyber attack awareness in smaller firms.

Security

New research has found corporate laptop security lacking, while smaller firms emerged as vulnerable to cyber attack, yet unaware of their potential as targets.

A survey of 320 UK public and private sector IT managers and senior IT staff found 43 per cent did not have data or device encryption deployed to secure their business laptops and a further five per cent admitted they didn't know if encryption was in use.

The survey, conducted by eMedia, revealed only half of organisations used data encryption to protect removable media, such as USB memory sticks, removable drives and DVDs. Nearly half (44 per cent) said they had no solutions deployed to protect these devices and six per cent of respondents said they did not know if encryption was in use.

Terry Greer-King, UK managing director of Check Point Software, which sponsored the survey said: "These threats need to be addressed by a combination of education and technology so that organisations can protect their data, their business and their employees against the risks of security breaches."

A similar UK survey also carried out by internet security software firm in October 2010 found just 40 per cent of organisations had encryption deployed on their laptop, suggesting a significant proportion of businesses are still vulnerable to breaches from loss or theft of portable PCs.

These threats need to be addressed by a combination of education and technology so that organisations can protect their data.

Greer-King said new threats such as consumerisation have also emerged, and many organisations hadn't established measures to secure the use of personal laptops and smartphones in the workplace.

Nearly two thirds (61 per cent) of organisations surveyed said employees use personal devices for work (up from 55 per cent in Check Point's October 2010 survey), yet 42 per cent of the respondents said they had no formal process for deploying security to these devices, leaving corporate network at risk.

Only 17 per cent of organisations said they insisted on deploying security on personal devices used for work purposes, and 42 per cent restricted access to the organisation's network or data resources to authorised corporate devices only.

A further 73 per cent said they had not experienced an incident of data loss incident in the past 12 months, whether accidental or malicious.

Yet, despite email breaches being the second most common vector for breaches, only 32 per cent of respondents said they had any kind of data leak prevention solution to protect email traffic and sensitive files from reaching unauthorised individuals.

Another survey published today, the Symantec 2011 SMB Threat Awareness Poll [PDF], also found half of small to midsized businesses believed they were too small to be the target of cyber attacks.

Yet data from Symantec.cloud found that 40 per cent of all targeted attacks since the beginning of 2010 had been directed at companies with fewer than 500 employees, compared to only 28 per cent for large enterprises.

Over two thirds (63 per cent) did not secure systems used for online banking, while a further nine per cent admitted they took no additional online banking precautions. Nearly the same proportion (61 per cent) used neither antivirus on all desktops or mail servers or services (47 per cent).

Featured Resources

Four strategies for building a hybrid workplace that works

All indications are that the future of work is hybrid, if it's not here already

Free webinar

The digital marketer’s guide to contextual insights and trends

How to use contextual intelligence to uncover new insights and inform strategies

Free Download

Ransomware and Microsoft 365 for business

What you need to know about reducing ransomware risk

Free Download

Building a modern strategy for analytics and machine learning success

Turning into business value

Free Download

Recommended

How to encrypt files and folders in Windows 10
encryption

How to encrypt files and folders in Windows 10

23 Feb 2022
Ten ways to protect your company from the next big data breach
data breaches

Ten ways to protect your company from the next big data breach

18 Feb 2022
Gumtree site code made personal data of users and sellers publicly accessible
data protection

Gumtree site code made personal data of users and sellers publicly accessible

16 Dec 2021
Pizza chain exposed 100,000 employees' Social Security numbers
data breaches

Pizza chain exposed 100,000 employees' Social Security numbers

19 Nov 2021

Most Popular

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack
hacking

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack

16 May 2022
Windows Server admins say latest Patch Tuesday broke authentication policies
Server & storage

Windows Server admins say latest Patch Tuesday broke authentication policies

12 May 2022
Microsoft to double salary budget to retain workers
Careers & training

Microsoft to double salary budget to retain workers

17 May 2022