News
McAfee: SMBs Underestimate Cybercrime Risks
A survey by McAfee found that SMBs in North America wrongly conclude their revenue is too low to draw the attention of cybercriminals
By Jeremy Kirk, IDG News Service (London Bureau)
July 31, 2008 —
The latest survey from security vendor McAfee has found that small to medium-size businesses in North America and Europe wrongly conclude their revenue is too low to draw the attention of cybercriminals.
SMBs are in fact rich hunting ground for hackers, McAfee said. Although there may be less money or data to steal, the attacks are also less likely to gain the attention of law enforcement organizations such as the U.S. Federal Bureau of Investigation.
"Lots of small attacks add up to large amounts of revenue," according to the survey, which polled 500 companies in the U.S. and Canada. There are an estimated 7.4 million SMBs in North America.
McAfee's study this year focused on North America, whereas last year it surveyed 600 European SMBs. However, the conclusions of the two studies are similar.
About 45 percent of North American businesses felt they did not have valuable data to steal. Last year, 58 percent of European businesses gave the same response.
In the U.S., 39 percent of businesses with up to 1,000 employees reported spending an hour or less a week on IT security. The figure is higher for Canadian businesses: 44 percent.
Part of the problem is that attention to security takes time, and SMBs have fewer resources. Many don't have an employee dedicated full-time to IT security. But McAfee argues that SMBs could face critical shutdowns in business as a result of weak security.
Every business retains employee data, which could be valuable, the survey said. Also, every business is hit with spam, which often is laden with malicious data-stealing programs.
McAfee said it expects hackers to increasingly go after VOIP (Voice over Internet Protocol) phone systems, virtual systems as well as mobile devices. McAfee's advice: patch regularly, filter e-mail and use antivirus software.
Data Center Directions Virtual Conference
Attend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.
The Surest Path to Effective and Efficient Compliance
In this webcast, we explore why and how — with best practices, practical tips and solutions that work — to ease your compliance challenge.
Prudential Financial Protects its Brand with Symantec Data Loss Prevention Solutions
FORTUNE 100 insurance leaders rely on Symantec.Information Security: Data Drains and How to Prevent Loss
Do you know where your confidential data is?Data Loss Prevention: Keeping Sensitive Data Out of the Wrong Hands
Learn what the thought-leaders at PricewaterhouseCoopers have to say.7 Requirements of Data Loss Prevention
Incorporate best practices from many companies using DLP solutions.Ponemon Study: How Much Does a Data Breach "Cost"?
35 U.S. organizations that lost confidential information and had a regulatory requirement to publicly notify affected individuals are studied in this report.
- How Are Open Source Development Communities Embracing Security Best Practices?
- Using Likewise to Comply with PCI Data Security Standard
- Ponemon Study: How Much Does a Data Breach "Cost"?
- Managing SSL Security in Multi-Server Environments
- Maximizing Site Visitor Trust Using Extended Validation SSL
- The Latest Advancements in SSL Technology
Get instant notifications when whitepapers, webcasts and case studies are added
to our library. Sign up for a Resource Alert now!
CSO Corporate Partners
Data Loss Prevention
-
November 13, 2008The Roosevelt HotelRegister now »
New York, NY 10017
(ISC)2 members can earn up to 6 CPE Credits
Reference priority code ONLINE and attend this program as our guest — that's a $295 savings!
