Slashdot Mirror
75% of Enterprises Have Suffered Cyber Attacks, Costing $2M+ On Average
coomaria writes "OK, even allowing for the fact this comes from a newly published study (PDF) from a security company, that's still one heck of a statistic. The fact that it's Symantec, and so has access to perhaps more enterprises than most, makes it a double-heck with knobs on. Or how about this one for size: 'every enterprise, yes, 100 percent, experienced cyber losses in 2009.'"
This is like the MPAA/RIAA claiming that "piracy" is costing their respective industries "billions" of dollars. Seriously - if you can't spot the conflict of interest you need to turn in your critical thinking hat.
This is just marketing to increase sales of their "security" products. In fact if you go to the actual PDF linked to in the article it looks suspiciously like a sales brochure, presenting the "problem" and at the end showing how Symantec is the "solution".
Seven puppies were harmed during the making of this post.
...is here.
Liberal? Conservative? Compare perspectives at Left-Right
A proper security auditing team or a loss here and there?
Business as usual - avoiding costs because their financial losses are smaller and/or deductable.
'Article' is at best 3 paragraphs, poorly written, with advert popups.
For those who are interested, original text below.
Just having and paying for symantec is a cyberloss, and that's before a cyber attack!
_ _ _ Go for the eyes Boo! GO FOR THE EYES!
Aw, c'mon. We've not spent nearly $2M on Symantec licences here, and I'd hardly call their sales pitch a cyber attack.
I'm here all week, try the veal
i'm not familiar with that metric. could you convert that into libraries of congress?
intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
Sorry guys, but this crap is a complete waste of my time.
You're seeing all of the counter arguments against the sales pitch. So now, when the sales people come in, you can either decimate their argument or decimate their argument with your boss.
Other vendors will still use the BS to sell their horseshit and you will have a ready arsenal of things to consider so you won't fall for their crap.
See? You and your peers get to tackle salesmen BS together.
Think of it as techie How Tos for sales people.
Connect any web server to the internet and you'll see tons of connections from botnets trying randomly to exploit various old vulnerabilities. Technically, these are attacks, though you don't need to worry about them if you're patched up.
So is this saying anything more than 75% of enterprises have a web server?
And the average cost is a meaningless number, since averages are swayed by outliers. If you wanted a good statistic for this, you'd use the median. Alternatively, compute the average of (cost of attack / yearly revenue).
Sweet, the first article that was so bad I just tagged it as spam. I'd worry about the future but the filters on the /. editors have been crap for years, surprised there aren't more of these.
I seriously doubt Symantec are only counting "concerted attacks from a single original with a specific target in mind". More likely they mean "opportunistic attacks".
So, to /., I say:
Those of you who still have your hand up, well done. You've done just about all that is possible to secure your network short of giving everyone dumb terminals and your internal customers are delighted with everything you do.
Everyone else will see an attack from time to time. The whole point of a of security is you have several layers so any attack won't get far.
butt he remains handy with the delete button.
it makes no sense to delete the stuff we posted today,,, rob? carry on.
I must verify the claims made in the summary: my workplace suffered severe cyber losses during 2009.
Thankfully, we'd prepared for this, and had ordered in cyber ahead of time so the supply of cyber was not interrupted. (Sadly, we were not as quick to deal with the Y2K bug and, as a result, we incurred almost complete loss of all our cyber.)
Connect any web server to the internet and you'll see tons of connections from botnets trying randomly to exploit various old vulnerabilities. Technically, these are attacks, though you don't need to worry about them if you're patched up.
A fair proportion might not have done much even if you were not "patched up", since they never targeted the web server you are running. The actual real risk is that they could operate as a DDOS. Either to the webserver or whatever "security software" you put in front of it. The latter could even be less able to cope with the situation.
By my count (of Wikipedia), there are 2 Enterprises from the Continental Navy, 6 from the US Navy, 1 balloon, 1 space shuttle, 1 training ship, and 8 starships that are worth counting, for a total of 19 Enterprises. If 75% have suffered major cyber attacks and we round down, we have 14 cyber-victims.
Here's where it gets weird. Clearly the 8 starships are attackable in the computerized sense. That leaves us with 6 other hackable Enterprises. Most likely 1 is the space shuttle, 1 is the training vessel, and 1 is the contemporary air craft carrier. But that means 3 more Enterprises were cyber-violated out of a pool containing a balloon used during the Civil War and 5 US Navy ships decommissioned between 1823 and 1947.
This seems to be proof of a pre-modern technological underground. Or time travel.
"I zero-index my hamsters" - Willtor (147206)
me thinks that maybe sysmantec is bad luck
75% of statistics are made up 48% of the time. -- time to troll me!
I think that sysmantec might be bad luck. Hell if every company they interview has been victim to some kind of cyber attack I don't want to be interviewed by them. I mean they look like the Jessica Fletcher of IT.
This article severely overestimates the impact of cybernetic attacks. According to my count, the borg only invaded 25% of starship enterprises, excluding those existing in alternate timelines/realities.
We've suffered from several internally launched attacks. Weird stuff too. Raid arrays reporting bad disks, server DOS, server files altered preventing reboot. Under linux too.
Oh wait, that would be me using a cheap raid card, forgetting I'd set the firewall to deny any network access (did it during pre-production testing), and plain vanilla upgrading.
Sorry. Sometimes it's hard to distinguish attacks from f$%#-ups.
The world is made by those who show up for the job.
So now, when the sales people come in, you can either decimate their argument or decimate their argument with your boss.
"Your boss" most of the time is not a technical person, and is also answering to his even more non-technical higher ups in the corporate management chain. So given the suits, who are they going to listen to? The slick, corporate-speak piece promising warm fuzzy security by a recognizable industry name, or the unknown neckbeard working in the NOC that spends his spare time compiling kernels? Suits want the illusion of security, and when stuff breaks are going to blame YOU, not the fellow suits at Symantec. TFA is not written for tech folks, they're written for people who make purchasing decisions.
I renew my call to action. now is not the time to debate better security through "operating systems" or "best practices" but instead to focus on the matter at hand: we have not purchased enough symantec products this year.
seriously. a security company that finds a hellatious influx of cyber attacks is not news, its advertisement. its only sixteen pages long, page 1 is a pretty girl, and the last page is a summary of...oh imagine that, links to the product the company is selling and not independent citations.
Good people go to bed earlier.
100% and no big surprise it is that high. I am sure they defined "attack" as something with some level of sophistication, but the only level it takes is the level that gets in. Which isn't often very high.
If you insist on the definitions and choices used in the report then no, I'm afraid this is not really a very exciting statistic at all.
From page 5:
"Security risks" ranked by importance, by IT Managers:
Cyber Attacks - 42%
Traditional Criminal Activity - 17%
Brand related events - 17%
Natural Distasters - 14%
Terrorism - 10%
So IT Managers are mostly concerned with threats to computers? Colour me surprised.
So, let me see, this is an enterprise (Symantec) responsible for enterprise security saying that enterprise security is crap.......which means that they (Symantec) are not doing too good a job which is something that everyone already knows. Hmmm, nothing to see here, move along.
Were it that easy.
Sadly, you can get smashed by the zero-days, the rootkits from hell, the flash-drive-dummies, Mr or Ms I-Don't-Get-Paid-Enough, the supposed 100% spam killing filters, and so on.
Yes, we try. And your concept of filtration via layers works for many types of attacks and security failures. But nothing is foolproof because fools are so ingenioius.
This isn't to justify Symantec's latest PR attempt, just to remind you that while you look organized, something's sneaking up behind you.
---- Teach Peace. It's Cheaper Than War.
I did not suffer 1 dime because of this, maybe they come to 100% because they only asked their own clients.
It shows 2 things, first they asked very selective (they didn't asked me for instance), and second, it shows how inherently insecure their products are (I am not their client and suffer none problems).
Not that Norton or any other so called security solution can safe people from making bad security decisions, if you make the right decisions then you don't need their products in the first place.
My opinion is that managers who connect critical infra to internet instead of private networks should at least be jailed for 5-10 years.
It's only maketing, they never go to the true causes and solutions that dont include them, they dont even mention virus, etc. the poorest study i had read
just who are they paying to fix shit ...ballmer or gates in the flesh?
no back ups?
no images for the box
STUPID ADMINS AND COMPANIES ON NOTICE YOU DESERVE IT THEN
I believe your entire argument was covered in the last bullet.
Only I can judge you.
My point exactly. Welcome to the perfect world.
---- Teach Peace. It's Cheaper Than War.
Well we have...
NX-01 (I am sure some alian has gotten into their computer)
NCC-1701 (I am sure some alian has gotten into their computer)
NCC-1701-A (Hacked by a Rogue Volcan)
NCC-1701-B
NCC-1701-C
NCC-1701-D (Hacked by the Borg)
NCC-1701-E (Hacked by the Borg)
So I have 71.5% However I haven't read any expanded universe stuff...
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
I think the more alarming statistic is that 75% of Enterprises have suffered Klingon attacks.
Soylens viridis homines es
Makes you see just how much of a problem we do have, when we know that 100% of companies that are attacked, suffer serious losses, you would think the DoD or what not would try to implicate themselves a little more, or which org. would need to be so?
How much is that in Federation Credits?
http://alternatives.rzero.com/
And you both totally forgot about Mr or Ms I-write-my-password-on-a-sticky-note, plus all of the other identity management disciplines, like preventing a socially engineered password reset call to the help line, etc.
libertarian: (n) socially liberal, financially conservative; neither left, nor right.
It would certainly be in my best interest, being basically in the same biz as Symantec. But I guess I couldn't keep up a straight face and repeat that. I can see that 75% of enterprises were attacked. That is quite possible. Of course, most of those attacks consisted of little more than a few kids trying to guess passwords (can you see a LOT of "attacks" like that against facebook and the like?). When you strip all the attacks the average router and a sensibly configured server defeat by default, we're probably down at a single digit number.
What strikes me as odd is the claimed 2M loss. That sounds like it came from the same source the RIAA gets their damage claims from. And I'm NOT going there, nono, no way...
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Wrong. My company (a small enterprise) didn't have any loses due to hacking or viruses in 2009. ZERO. We do know of VERY LARGE Facebook game studios who had loses and a laptop with unencrypted data stolen, however.
We do expect to be hacked at some point know matter how cautious we are. That is the nature of being on the internet. All our plans include how to recover from a hacked web presence. Further, we've clearly told the Board of Directors that we will be hacked at some point, there's really no 100% complete defense that is acceptable based on web service requirements today.
Simple. Plan to be hacked, have a plan when it happens.
We have had minor loses due to hardware failures. Basically, just a few hours of lost work for 1 person between daily backups. Eh, the solution to that problem isn't worth the trouble for us.
I agree in every way with you. What people who dont work in the industry dont understand, is that most users are stupid. I work at a university where some professors dont know how to get to their email unless there is an icon on the desktop. Im sure a few of them thought they had a long lost relative die and leave them money somewhere a few times. In short, why do so many companies get attacked? PEBKAC.
Really, the cyber attacks on Enterprises are well known. First there was Dr. Daystrom, who "upgraded" an Enterprise with his M-5 computer... Later, another Enterprise was subject ot cyber attack on numerous occasions: the attack by the Iconians was one of the earlier examples. This Enterprise was ultimately destroyed as a result of a cyber attack by Klingons. The next Enterprise was invaded from within by the Borg. So it's actually a pretty common occurrence, it seems.
Bow-ties are cool.
Utter Bullshit...........
"If the King's English was good enough for Jesus, it's good enough for me!" -- "Ma" Ferguson, Governor of Texas (circa
The mean average is strongly affected by outliers but the median average is not. Generally the median average is the most useful for these kind of figures. I would guess the mean has been used but it seems to be very rare that you are told which average was taken.
So 100% were affected, even those using Symantec software?
I doubt it is "attacks." I bet that the losses from wasted employee time and incompetent expenditures on useless hard/software exceed the costs of attacks by a couple orders of magnitude.