[ISN] Internal security threats multiply

From: InfoSec News <alerts_at_private>
Date: Thu, 24 Jul 2008 04:01:44 -0500 (CDT)

By William Jackson

An evaluation of more than 100,000 endpoint devices at private-sector 
enterprises showed that significant numbers were missing essential 
software such as antivirus or security patches and were using 
unauthorized applications such as file sharing and remote control 

Network management company Promisec Inc., of New York, scanned client 
endpoints with its Spectator tool in the first six months of this year.

"Despite millions of dollars invested in security technology and 
millions more in personnel costs, we did not find a single company that 
had a completely clean bill of health from a risk and security 
perspective," said Alan Komet, vice president of worldwide marketing at 

"One of the most alarming findings of the audit was how rapidly these 
internal security threats have increased over the past year," the 
company's report states. "Compared to a similar study conducted in 2007, 
Promisec found that in the first half of 2008 the percentage of infected 
computers with unauthorized remote control software had increased by 
more than 200-fold, those without a working antivirus program had 
increased 12-fold and the number with unauthorized storage had increased 
tenfold. Other threats had increased by anywhere from two to eight times 
as many when compared to the previous year."


Attend Black Hat USA, August 2-7 in Las Vegas, 
the world's premier technical event for ICT security experts.
Featuring 40 hands-on training courses and 80 Briefings 
presentations with lots of new content and new tools.
Network with 4,000 delegates from 50 nations.  
Visit product displays by 30 top sponsors in 
a relaxed setting. http://www.blackhat.com
Received on Thu Jul 24 2008 - 02:01:44 PDT

This archive was generated by hypermail 2.2.0 : Thu Jul 24 2008 - 02:04:57 PDT