{"id":305,"date":"2009-01-06T16:37:20","date_gmt":"2009-01-07T00:37:20","guid":{"rendered":"http:\/\/cubist.cs.washington.edu\/Security\/?p=305"},"modified":"2009-01-07T17:33:59","modified_gmt":"2009-01-08T01:33:59","slug":"most-companies-are-at-risk","status":"publish","type":"post","link":"https:\/\/secblog.cs.washington.edu\/Security\/2009\/01\/06\/most-companies-are-at-risk\/","title":{"rendered":"Most Companies are at Risk"},"content":{"rendered":"<p><!--[if gte mso 9]&gt;  Normal 0     false false false  EN-US ZH-CN X-NONE               MicrosoftInternetExplorer4              &lt;![endif]--><!--[if gte mso 9]&gt;                                                                                                                                            &lt;![endif]--><span style=\"font-size: 11pt; line-height: 115%; font-family: &quot;Calibri&quot;,&quot;sans-serif&quot;;\">On <a href=\"http:\/\/it.slashdot.org\/it\/09\/01\/05\/2137202.shtml\">Slashdot<\/a> and <a href=\"http:\/\/www.finance-commerce.com\/article.cfm\/2009\/01\/06\/Tech-security-Most-big-companies-unprepared-for-IT-risks-survey-finds\">Finance and Commerce<\/a><\/span><\/p>\n<p><!--[if gte mso 9]&gt;  Normal 0     false false false  EN-US ZH-CN X-NONE               MicrosoftInternetExplorer4              &lt;![endif]--><span style=\"font-size: 11pt; line-height: 115%; font-family: &quot;Calibri&quot;,&quot;sans-serif&quot;;\">Survey says that most of the Fortune 1,000 companies are not prepared for IT security attacks. The article suggested that companies can start monitoring the networks. If it\u2019s too costly, outsourcing the monitoring job can be an option. With the current economic recession, IT related crime rate is likely to increase.<\/span><\/p>\n<p><!--[if gte mso 9]&gt;  Normal 0     false false false  EN-US ZH-CN X-NONE               MicrosoftInternetExplorer4              &lt;![endif]--><!--[if gte mso 9]&gt;                                                                                                                                            &lt;![endif]--> <span style=\"font-size: 11pt; line-height: 115%; font-family: &quot;Calibri&quot;,&quot;sans-serif&quot;;\">Factors that led to the lack of protection include optimism, lack of funding to enforce good protection, and people\u2019s ignorance about the IT security world. Companies could\u2019ve started thinking about security risks in the beginning, during its early ages. As companies grow, things get more complex, and it\u2019s harder for them to protect themselves from attacks. Despite the complexity of enforcing good protection, the cost is also high for large companies. <span> <\/span><\/span><\/p>\n<p><!--[if gte mso 9]&gt;  Normal 0     false false false  EN-US ZH-CN X-NONE               MicrosoftInternetExplorer4              &lt;![endif]--><!--[if gte mso 9]&gt;                                                                                                                                            &lt;![endif]--> <!--[if gte mso 9]&gt;  Normal 0     false false false  EN-US ZH-CN X-NONE               MicrosoftInternetExplorer4              &lt;![endif]--><!--[if gte mso 9]&gt;                                                                                                                                            &lt;![endif]--> <span style=\"font-size: 11pt; line-height: 115%; font-family: &quot;Calibri&quot;,&quot;sans-serif&quot;;\">With the recession in progress, companies probably have many problems (e.g. layoff, VC funding, etc.) to worry about other than security. Not focusing on those problems can directly lead to increased crime rate. Companies should focus more on problems that may cause security attacks than worrying about protecting themselves from security attacks.<span> <\/span>For instance, if the company doesn\u2019t have to lay off employees, then it doesn\u2019t have to worry about jobless employees trying to harm the company.<span> <\/span>If the company has enough resources to handle both security and other problems then that\u2019s the best case. <span> <\/span>The cost of preventing security attacks versus protecting against attacks really depends on the individual companies. Also, there are some relatively cheap ways to increase security protection such as not giving employees more privileges than they really need.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Slashdot and Finance and Commerce Survey says that most of the Fortune 1,000 companies are not prepared for IT security attacks. The article suggested that companies can start monitoring the networks. If it\u2019s too costly, outsourcing the monitoring job &hellip; <a href=\"https:\/\/secblog.cs.washington.edu\/Security\/2009\/01\/06\/most-companies-are-at-risk\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":67,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[207],"class_list":["post-305","post","type-post","status-publish","format-standard","hentry","category-current-events","tag-current-events"],"_links":{"self":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts\/305","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/users\/67"}],"replies":[{"embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/comments?post=305"}],"version-history":[{"count":10,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts\/305\/revisions"}],"predecessor-version":[{"id":319,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/posts\/305\/revisions\/319"}],"wp:attachment":[{"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/media?parent=305"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/categories?post=305"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/secblog.cs.washington.edu\/Security\/wp-json\/wp\/v2\/tags?post=305"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}