InvestorsHub Logo
Boards
News
Market Data
Markets
Discover
Discover
Subscribe Login/Register
S&P 500
5,022.21
(
-0.58%
)
US TECH 100
17,095.60
(
0.36%
)
Dow Jones
37,753.31
(
0.00%
)
Brent Oil
86.23
(
-0.87%
)
Bitcoin
62,513.63
(
2.01%
)
Post# of 248690
Next 10
Reply Private New
Public Reply Private Reply New Post
Keep Last Read
Keep Next 10 Report Keyboard Shortcuts
Next 10 Prev Next

Genz2

Send PM Follow Ignore
Followers 5
Posts 2487
Boards Moderated 0
Alias Born 09/06/2006

Genz2

Re: None

Sunday, 09/16/2018 11:53:17 AM

Sunday, September 16, 2018 11:53:17 AM

Post# of 248690
Phished credentials caused twice as many breaches than malware in the past year

Personal device use for remote work poses the biggest security risk to organisations safeguarding their increasingly mobile and cloud-based IT environment, according to a new survey of 100 UK-based senior IT security professionals.

Conducted from March to May by Rant, the survey found 58 percent of respondents believe that network access from non-corporate and personally-owned devices such as laptops, desktops or mobile phones is the highest risk in managing remote users, among other findings.

Remote work on the rise

75 percent of respondents reported that their users now connect remotely to work applications at least 25 percent of the time. While this remote work trend has created unmatched flexibility and has helped organizations attract top talent globally, it has introduced a major predicament for IT and security teams.

“Enterprise mobility is one of the biggest IT security challenges and personal devices are a massive blind spot,” said Richard Archdeacon, Advisory CISO at Duo Security. If you don’t know what’s connecting to the network, how can you protect data from being compromised? What’s clear from this survey is that decision makers still don’t feel comfortable with the sea of devices entering the workplace.”

When it comes to different groups of remote workers, nearly half of all security professionals (48 percent) ranked external suppliers and service providers as the most risky, compared to internal employees such as the C-suite, sales and field support workers.

This data is underlined by several recent high profile security breaches that originated from third-party suppliers. According to Forrester’s 2017 Global Business Technographics Security Survey, 41 percent of breaches in the past 12 months were incidents within the organization or involved business partners/third-party suppliers.

Phishing: The leading cause of breaches

The findings also reveal the extent to which phishing attacks targeting user credentials continue to dominate as the primary source of security breaches, underscoring the need for robust policies around device health and user authentication.

When asked about the biggest security incident in the last 12 months that resulted in unauthorised access to corporate applications, nearly half of respondents reported phishing as the cause. The findings reveal:
•Phishing resulted twice as many breaches than malware (48 percent compared to 22 percent)
•Phishing resulted in more breaches than malware and unpatched systems combined (48 percent compared to 41 percent).

“Outdated devices are particularly vulnerable to being compromised, which can easily spiral into a full-blown, major breach,” Archdeacon added. “Organisations don’t necessarily need to block individuals from using their personal devices, but they do need to re-shape their security models to fit these evolving working practices.”

Operating on a basis of zero trust where the user’s identity and device health are checked and verified every time they access an application, helps to minimise the security risks inherent in any Bring Your Own Device (BYOD) culture.
=================================================================
https://www.wavesys.com/products/wave-virtual-smart-card

https://www.wavesys.com/products/embassy%C2%AE-remote-administration-server-tpm-management

=================================================================
Wave Systems Security Solution for Windows 8 Tablets Eliminates Need for Passwords on Enterprise Systems

https://www.wavesys.com/buzz/news/wave-systems-security-solution-windows-8-tablets-eliminates-need-passwords-enterprise-syst
================================================================
Why an old technology gives Windows 8 tablets a huge security edge
https://www.wavesys.com/buzz/news/why-old-technology-gives-windows-8-tablets-huge-security-edge
=================================================================
Does Windows 8 Surface Pro's security credentials signal the decline of MDM?

https://www.wavesys.com/buzz/news/does-windows-8-surface-pros-security-credentials-signal-decline-mdm












Public Reply Private Reply New Post
Keep Last Read
Keep Last Read Next 10 Report Keyboard Shortcuts
Next 10 Prev Next

Join the InvestorsHub Community

Register for free to join our community of investors and share your ideas. You will also get access to streaming quotes, interactive charts, trades, portfolio, live options flow and more tools.

Sign Up