They say knowing is half the battle… if that is the case, then businesses are losing the fight against the threat of data breaches.
New research from cybersecurity firm Balabit has found that while companies actually expect to experience a breach, chances are they won’t know what hit them or – worse – that it already did. In addition, more than a quarter of them anticipate breach incidents within the next six months.
Here are the findings of a survey of 400 IT and security professionals in the UK, France, Germany, and the US:
“Attacks are becoming more and more sophisticated and every organisation is at risk,” commented Balabit’s Csaba Krasznay. “Security is no longer about simply keeping the bad guys out. Security teams must continuously monitor what their own users are doing with their access rights, as part of a comprehensive and cohesive security strategy.”
Balabit said privileged users, or those with the most access within an organisation, are the most vulnerable to attack or becoming insider threats. It described half of all breaches as being employee-related.
“What’s really alarming, though, is that the majority of businesses know very little about the nature of the security breaches that are happening to them,” added Krasznay. “Many even admit that a security breach could quite feasibly go unnoticed. That’s how loose a grip we’ve got on them, or how little we really understand them. We know about breaches, sure – but we really don’t know enough.”
According to Balabit, nearly four in five firms suffered a breach in the last year.