Return-Path: <sentto-279987-2869-1002809890-fc=all.net@returns.onelist.com> Delivered-To: fc@all.net Received: from 204.181.12.215 by localhost with POP3 (fetchmail-5.1.0) for fc@localhost (single-drop); Thu, 11 Oct 2001 07:22:07 -0700 (PDT) Received: (qmail 8675 invoked by uid 510); 11 Oct 2001 14:21:22 -0000 Received: from n5.groups.yahoo.com (216.115.96.55) by 204.181.12.215 with SMTP; 11 Oct 2001 14:21:22 -0000 X-eGroups-Return: sentto-279987-2869-1002809890-fc=all.net@returns.onelist.com Received: from [10.1.1.220] by n5.groups.yahoo.com with NNFMP; 11 Oct 2001 14:21:31 -0000 X-Sender: fc@big.all.net X-Apparently-To: iwar@onelist.com Received: (EGP: mail-7_4_1); 11 Oct 2001 14:18:10 -0000 Received: (qmail 76968 invoked from network); 11 Oct 2001 14:18:10 -0000 Received: from unknown (10.1.10.27) by 10.1.1.220 with QMQP; 11 Oct 2001 14:18:10 -0000 Received: from unknown (HELO big.all.net) (65.0.156.78) by mta2 with SMTP; 11 Oct 2001 14:21:30 -0000 Received: (from fc@localhost) by big.all.net (8.9.3/8.7.3) id HAA16903 for iwar@onelist.com; Thu, 11 Oct 2001 07:21:30 -0700 Message-Id: <200110111421.HAA16903@big.all.net> To: iwar@onelist.com (Information Warfare Mailing List) Organization: I'm not allowed to say X-Mailer: don't even ask X-Mailer: ELM [version 2.5 PL1] From: Fred Cohen <fc@all.net> Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com Delivered-To: mailing list iwar@yahoogroups.com Precedence: bulk List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com> Date: Thu, 11 Oct 2001 07:21:30 -0700 (PDT) Reply-To: iwar@yahoogroups.com Subject: [iwar] [fc:50%.of.US.companies.don't.give.a.hoot.about.online.data.security] Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit 50% of US companies don't give a hoot about online data security Security News Portal, 10/11/2001 <a href="http://www.securitynewsportal.com/article.php?sid=1890&mode=thread&order=0">http://www.securitynewsportal.com/article.php?sid=1890&mode=thread&order=0> Less than 50 percent of U.S. companies with Web sites are appropriately concerned with the security of their online data say a new report by Jupiter Media. Jupiter, a firm specializing in analysis and measurement of technology trends, today reports that although only 12.1 percent of U.S. companies with a Web presence cite direct financial loss as a concern of suffering an online security breach, more than 40 percent are concerned about the impact that an online security invasion has on consumer trust and confidence. While these "soft" concerns speak well of customer-focused operations, Jupiter analysts have found that their lack of direct financial value contribute to tremendously low planned growth in security spending. According to a new Jupiter Research report, titled "Enterprise Security: Managing Services for Maximum Coverage," enterprises must outsource a significant portion of their Web site security technology to stay safe and under budget. "While Code Red and other highly-publicized security breaches have filled headlines, most Web site managers are not particularly concerned about the security of their site's data," said David Schatsky, Jupiter senior analyst and research director. "There is a fundamental lack of understanding out there when it comes to the gravity of security breaches. As businesses consolidate their enterprise data, it becomes easier for attackers to reach. Even if files on the Web server itself are relatively inconsequential, a hacker can reach through customer-facing applications to data used by other systems." According to a July 2001 Jupiter Executive Survey, 49.5 percent of Web site managers and chief information officers (CIOs) consider the sensitivity of their site's data as "low." Jupiter analysts believe that this is a dramatic undervaluing of assets. To be prepared, stay abreast of the latest developments in site security and fend off unwanted online attacks, Jupiter analysts advise companies to outsource large portions of their Web site security initiatives to third parties. The new Jupiter Executive Survey also indicates that 29 percent of Web site managers and CIOs rate their risk of attack as "low." Nearly a third of these managers classify their data sensitivity as "high." According to Jupiter analysts, any business bothering to support a Web site should be concerned about an attack, and those who admit that their data is valuable to others should be doubly concerned. "Do-it-yourself security is short sighted. If you're talented and lucky, you can get by in a pinch, but it's going to catch up with you. Security services should absolutely be monitored and managed internally, but you need expert advice, cutting-edge technology and a 24-hour emergency response team to make it work," Schatsky said. Companies interested in purchasing the new Jupiter Research security report can call toll-free at 1-877-464-6627 or visit www.jmm.com. Businesses who would like have an analyst present this research at an upcoming event can contact Jamie Kampel at 917-534-6132 or jkampel@jmm.com. Jupiter Online Security Research Methodology Jupiter utilizes a wide set of data-gathering tools to conduct research, including systematic polling of leading industry executives, extensive consumer surveys, extensive executive surveys, Media Metrix audience measurement data, AdRelevance online advertising metrics and a rigorous approach to building market forecasting models. For a fuller explanation of the methodology, please visit <a href="http://www.jmm.com">http://www.jmm.com>. Jupiter IT Executive Survey In July 2001, Jupiter conducted a formal survey of IT executives selected from E-Rewards, Inc executive panel. A total of 471 individuals responded to the survey. Respondents were targeted by function (CIO, CTO, Director and/or VP of IT) and company revenue ($50 million or more). Respondents received an e-mail invitation to participate in the survey, with an attached URL linked to the Web-based survey form. As an incentive, respondents were awarded with frequent flyer points of choice and a free copy of the survey results. In this survey effort, Jupiter worked with its research partner E-Rewards, Inc on the technical tasks of sample building, survey fielding, and data processing. E-Rewards maintains one of the largest executive research panels with more than 200,000 IT and Business Executives in the U.S. Panel-based market research with E-Rewards enables Jupiter to field successful, highly targeted surveys to hard-to-reach executives such as purchasing managers and VPs of IT. About Jupiter Media Metrix Jupiter Media Metrix is the global leader in Internet and new technology analysis and measurement. The company delivers innovative and comprehensive Internet measurement, analysis, intelligence and events to provide businesses with unmatched global resources for understanding and profiting from the Internet. Jupiter Media Metrix brings together world-class, innovative and market-leading products, services, research methodologies and people. Jupiter Media Metrix brands include Media Metrix, AdRelevance, Jupiter Research and Jupiter Events. The Company is headquartered in New York City and operates worldwide, across the Americas, Asia Pacific, Europe (as Jupiter MMXI Europe), and the Middle East. Visit us at www.jmm.com for more information. ------------------------ Yahoo! Groups Sponsor ---------------------~--> Pinpoint the right security solution for your company- Learn how to add 128- bit encryption and to authenticate your web site with VeriSign's FREE guide! http://us.click.yahoo.com/yQix2C/33_CAA/yigFAA/kgFolB/TM ---------------------------------------------------------------------~-> ------------------ http://all.net/ Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/
This archive was generated by hypermail 2.1.2 : 2001-12-31 20:59:54 PST