If occasionally it seems that presently almost each company is cracked, it indeed. During the recent survey of 583 American companies conducted by Ponemon Research by request of Juniper Networks company, 90% of respondents said that security of computers in their companies at least once, for the last 12 months, was broken by hackers.
Nearly 60% announced two and more violations for the last year. More than 50% said that they doubt an opportunity to prevent repeated invasions within the next 12 months.
These digits are much higher, than results of similar researches, and they let know – the increasing number of the companies loses battle, trying to hold malefactors outside the networks.
Johnnie Konstantas, the marketing director of Juniper company, it is struck: "We expected messages of most of respondents about the postponed invasions. But when 90% say that they recorded, at least, one violation, and more than 50% speak about two or more, it is inconceivable". Results show that invasions became almost "statistics" presently, she told.
The organizations which participated in Ponemon poll represent a wide cut of both private, and state sectors, beginning from the small companies with number of the serving less than 500 people, to the enterprises with labor power of more than 75 thousand employees. Online poll was held within five days of the beginning of month (what?).
About a half of respondents expostulate on limitation of resources for security problem solving. Approximately too the quantity indicates complexity of network management as the main problem for implementation of security measures and control.
Let's remind, in the last several months hackers cracked the systems of a set of allegedly protected organizations, such as RSA - the system provider of security and also networks of the companies EMC Lockheed Martin Oak Ridge National Laboratories Sony, Sega and International Monetary Fund.
During many of these attacks the difficult malware and methods of social engineering intended for prevention of fast detection by normal means were applied.
Analysts speak about the growing requirement of the enterprises to control, fast detection and control of violations of security. Need of it is confirmed by the committed assaults. But instead of focusing only on protection against attacks, the companies need to be ready to what will follow after intended invasion.
Survey results show that some companies began to move in this direction. About 32% of respondents reported that the main attention was paid to prevention of the attacks, and about 16% said: the main direction of their efforts on security is concentrated on fast detection and response to incidents in systems. About a quarter of respondents told that their attention was directed to pulling up of control of security level with the best practices.