Network Security News

Survey: One-fifth of IT managers cheat on security audits

Thursday, May 28, 2009

A new survey of IT managers and staff has found that 20 percent of IT security pros admit to fudging firewall audits in order to pass.

Released yesterday by an Israeli security vendor, the survey also discovered that 63 percent of companies only audit their firewalls every three months to a year, with 9 percent saying they never bother to check their firewalls at all. About half admitted that their firewall rules are "a mess."

The survey, conducted at the InfoSecurity Europe 2009 Conference in April, sampled 151 IT security professionals, many of whom come from multinational organizations and government departments employing 1,000 to 5,000 or more employees, the security company said.

Firewall audits typically only take a few days for the majority of companies. However, from a security perspective, infrequent audits can mean that many companies have firewalls that at best are running under par, the company said.

The survey also found that many companies are buying IT hardware off eBay, a trend the company was aware of anecdotally via its customers, it said. Almost a quarter of companies (24 percent) would buy from eBay if it meant that they would save money.
ADNFCR-1765-ID-19190841-ADNFCR

Related News:

Zeus botnet performs MySpace spam campaign to spread itself further - 11.20.2009
A sophisticated Trojan dubbed "Zeus" has sent a flood of email messages to MySpace users in an attempt to propagate itself onto more computers, according to researchers at the University of Alabama at Birmingham.

Experts dissect Chrome OS security features - 11.20.2009
Yesterday's release of Google's groundbreaking new cloud-based operating system, Chrome OS, has caused a stir in techie circles, with experts of all stripes rushing to examine the product and issue their judgments.

Microsoft counts Chrome coup with discovery of security flaw - 11.20.2009
Security researchers at Microsoft recently discovered a security vulnerability in Google's controversial Chrome Frame for Internet Explorer, a browser plug-in that simulates Chrome functionality within an Internet Explorer session.

iPhone user sues games maker, claiming to have found hidden spyware - 11.18.2009
An iPhone gamer filed a federal lawsuit against mobile game programmer Storm8 today, alleging that the company violated his privacy by including hidden code in its games that gathered his personal information without permission.

Government watchdog warns of possible IT leaks at Los Alamos - 11.16.2009
The Government Accountability Office has issued a report on data security at the Los Alamos National Laboratory which says that sensitive and highly classified information is vulnerable to outside access.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now