Access your Pro+ Content below.
Verizon DBIR: Organizations are forgetting computer security basics
This article is part of the May 2012 issue of Information Security magazine
In the information security industry, we’re always hearing about cybercriminals becoming more sophisticated, developing increasingly insidious ways to break into corporate networks. And of course, there’s always a new product out there that will solve the latest threat. While there’s no doubt criminals are developing some pretty sneaky attack techniques – especially against certain organizations like defense contractors -- it turns out that the majority of cyberattacks are far from sophisticated. According to the 2012 Verizon Data Breach Investigations Report, 96 percent of all attacks weren’t tremendously difficult, and 79 percent of victims were targets of opportunity. So despite all the hand wringing over emerging threats, what happened most often was the old style crime of opportunity: Criminals seized on easily exploitable vulnerabilities to victimize organizations more than specifically targeting a company. While it was too early in April to say how attackers were able to break into Global Payments’ servers, the March 30 ...
Features in this issue
Understand the benefits and limitations of multi-platform MDM technology.
Virtualization giant revamps its security partner program after hitting some bumps in the road.
Plan your data loss prevention project carefully to avoid missteps.
Organizations need to establish formal mobile policies before buying a mobile device management system.
Columns in this issue
Verizon data breach report illustrates need to get back to basics.
Security professionals need to understand the difference and plan accordingly.
Be aware of potential roadblocks and adjust your recruiting accordingly.