While Snooping Continues to Rise, IT Security Is Making It Harder for Insiders to Get Around Controls That Protect Highly-Sensitive Information  

LONDON – July 7, 2010 – The results of Cyber-Ark® Software’s fourth annual “Trust, Security and Passwords” global survey show that 35 percent of respondents believe their company’s highly-sensitive information has been handed over to competitors.  Thirty-seven percent of the IT professionals surveyed cited ex-employees as the most likely source of this abuse of trust.  While perhaps not surprising that disgruntled workers top the list, it’s noteworthy that 28 percent suspected “human error” as the next most likely cause, followed by falling victim to an external hack or loss of a mobile device/laptop, each at 10 percent.  The most popular information shared with competitors was the customer database (26 percent) and R&D plans (13 percent).

Security experts advise that while PCI DSS is complex, costly consultants may not be necessary

PCI DSS Compliance is certainly going to be top of mind for retailers in the coming months.  On Thursday July 1st Visa is tightening up its security rules on smaller companies accepting card payments; this is particularly pertinent as it was announced earlier this month that all London Olympics tickets must be purchased on a Visa card! In September, a further security mandate will require large scale card-accepting businesses to be fully PCI DSS compliant from the start of that month onwards.

With news of defenceless USB sticks containing sensitive information being lost and stolen being commonplace – what will it take for the message to get through?

Tuesday 22nd June 2010, London (UK) : As threats to corporate data grow, and the cost of breaches increase, a survey of alleged security conscious professionals has remarkably revealed that over half of respondents (52%), who admit to carrying company data on a USB stick, do not encrypt it. Remarkably, 11% of this savvy audience, who really should know better, ‘protect’ their devices with passwords alone – an insufficient defence that is widely understood to be easily breached!

London, 9th June 2010 -  Data security leader specialist has backed the Australian Internet Industry Association (IIA) initiative in encouraging ISPs nationwide to adopt a new voluntary code of conduct on cyber security. 

Along with educating and better protection customers, ISPs are also being asked to temporarily quarantine those users whose computers are infected by zombie malware and is generated spam.

"This move is to be applauded and while it’s certain to generate an outcry from some quarters, will only temporarily block an infected users' ability to generate spam.  It won't affect their ability to surf the Internet or access a Webmail account,” said Amichai Shulman, chief technology officer with Imperva.