IT disaster recovery, cloud computing and information security news

Daisy

The endpoint is the source of the greatest security risk: according to a new survey

More than 50 percent of security professionals believe the endpoint is the source of the greatest security risk, and five times greater than either the network or the cloud, according to a new survey by Bromium.

The ‘Black Hat 2015: State of Security’ survey highlights the current state of security within the IT security profession and has found that, while on overwhelming 90 percent of security professionals believe that their organization would be more secure with Flash disabled, it would also make them less productive.

“One reason that the endpoint is the source of the greatest security risk is because of how difficult it is to balance security and productivity. Traditional security solutions have proven ineffective at mitigating this dilemma, putting our critical infrastructure at significant risk” said Clinton Karr, senior security strategist, Bromium.

Key findings from Black Hat 2015: State of Security include:

  • The endpoint is the source of greatest security risk: the majority of information security professionals cited the endpoint as the source of the greatest security risk (55 percent). The second most common response was insider threats (27 percent). Network (9 percent) and cloud (9 percent) were selected less frequently.
  • Security professionals pan Flash: the overwhelming majority of security professionals believe their organization would be more secure if it disabled Flash (90 percent); however, 41 percent believe disabling Flash would make their organization less productive or break critical applications.
  • Implementing security patches is a challenge: the majority of organizations implement patches for zero-day vulnerabilities in software, such as Flash and Internet browsers, in the first week (50 percent first week; 10 percent first day); however, 22 percent take more than a month to deploy.
  • Critical infrastructure is at risk of cyber attack: the majority of survey respondents cited financial services (30 percent), energy (17 percent), healthcare (17 percent) and government (12 percent) as the verticals at the most risk of cyber attacks. Interestingly, financial services was also selected as the vertical that has implemented the best security practices (60 percent).
  • Windows 10 improves security, but not enough: the majority of information security professionals believe Windows 10 improves security (56 percent), but many (33 percent) believe these improvements are not enough.

Download Black Hat 2015: State of Security here.  



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.