Continue in 2 seconds

Many organizations still clueless when it comes to cyber security

  • February 03 2017, 6:40am EST
More in

Despite all the attention now focused on cyber security, a large number of organizations say they are unclear on the most effective protection strategy to combat these types of attacks.

This lack of knowledge and protection “is putting businesses across the globe at risk of grinding to a halt,” according to the new Corporate IT Security Risks survey from Kaspersky Lab.

The study found that nearly four-in-ten (39 percent) or organizations acknowledge that they not confident that they have adequate IT security safeguards in place.

“DDoS attacks in particular can quickly incapacitate a targeted business’s workflow, bringing business-critical processes to a stop,” the study noted. However, the research found that nearly a fifth (16 percent) of businesses are not protected from DDoS attacks at all, and half (49 percent) rely on built-in hardware for protection.

“This is not effective against the increasing number of large-scale attacks and ‘smart’ DDoS attacks which are hard to filter with standard methods,” the report added.

In many cases, organizations assume that they’re already protected from these types of attacks, but that confidence is often misplaced.

Nearly half (40 percent) of the organizations surveyed fail to put measures in place because they believe that their Internet service provider (ISP) will provide protection. One-in-three (30 percent) believe that their data center or infrastructure partners will protect them.

“The reality is that these organizations mostly protect businesses from large-scale or standard attacks, while ‘smart’ attacks, such as those using encryption or imitating user behavior, require an expert approach,” the study explains.

Perhaps most surprisingly, the survey found that a third (30 percent) of organizationis fail to take action because they think they are unlikely to be targeted by DDoS attacks. One-in-ten (12 percent) even acknowledge that they believe that a small amount of downtime due to DDoS would not cause a major issue for the company.

“The reality is that any company can be targeted because such attacks are easy for cybercriminals to launch. What’s more, the potential cost of a single attack can be in the millions,” according to the report.

“As we’ve seen with the recent attacks, DDoS is extremely disruptive, and on the rise,” says Kirill Ilganaev, head of Kaspersky DDoS protection at Kaspersky Lab. “When hackers launch a DDoS attack, the damage can be devastating for the business that’s being targeted because it disables a company’s online presence. As a result business workflow comes to a halt, mission-critical processes cannot be completed and reputations can be ruined.”

“Online services and IT infrastructure are just too important to leave unguarded,” Ilganaev continued. “That's why specialized DDoS protection solution should be considered an essential part of any effective protection strategy in business today.”

Register or login for access to this item and much more

All Information Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access