Survey Exposes The Dirty Little Secret Of Undisclosed Breaches

[InfoSec News <alerts () infosecnews org>]

http://www.darkreading.com/attacks-breaches/survey-exposes-the-dirty-little-secret-o/240163717

Kelly Jackson Higgins
Dark Reading
November 07, 2013

Nearly 60 percent of malware investigations in U.S. enterprises involve data 
breaches that were not disclosed, according to new research.

Some 66 percent of security professionals at U.S. companies with more than 500 
employees say they have investigated or worked on a breach that was not 
disclosed by their organizations, while 57 percent said they had worked on a 
data breach that went unreported, according to a survey of 200 security 
professionals by OpinionMatters, which was commissioned by ThreatTrack.

"While it is discouraging that so many malware analysts are aware of data 
breaches that enterprises have not disclosed, it is no surprise that the 
breaches are occurring," says Julian Waits, CEO at ThreatTrack. "Every day, 
malware becomes more sophisticated, and U.S. enterprises are constantly 
targeted for cyberespionage campaigns from overseas competitors and foreign 
governments. This study reveals that malware analysts are acutely aware of the 
threats they face, and while many of them report progress in their ability to 
combat cyberattacks, they also point out deficiencies in resources and tools."

Senior executives' devices become infected 56 percent of the time due to their 
opening a malicious URL in a phishing email, 45 percent of the time after 
letting a family member use a company-owned device, 40 percent of the time due 
to visiting a pornographic website, and 33 percent for installing a malicious 
mobile app.

[...]



--
Find the best InfoSec talent without breaking your
recruiting budget! Post a Job, $99 for 31 days.
Hot InfoSec Jobs - http://www.hotinfosecjobs.com/