August 15, 2005
—
CSO
—
Security executives know the information-sharing pitch so well, they can sense it coming like a public radio fundraising drive. Every so often, law enforcement leaders need to give a speech urging private sector players to share information about security breaches with the authorities. And so it was that FBI Director Robert S. Mueller III made the appeal in remarks to the InfraGard 2005 National Conference on Aug. 9.
To his credit, Mueller acknowledged that it’s a tough sell. Only 20 percent of companies that experienced computer intrusions in 2004 reported those incidents to law enforcement, Mueller said, citing a survey by the Computer Security Institute and the FBI. Respondents cited a fear of bad publicity and "a loss of competitive advantage" if they went public with their breaches. He said he knows it’s not a good idea to send agents in logo-laden raid jackets racing to every scene. And yet, there it was, that low participation rate.
Mueller’s citation sounded bad, but it may be rosy. A 2004 survey of 8,100 security and technology executives, said about 16 percent reported a negative security incident to either the CERT Coordination Center or law enforcement. (A writeup of the 2004 Global Information Security Survey by PricewaterhouseCoopers and CSO and CIO Magazines, can be found here.) Another research project, the E-Crime Watch Survey by the Secret Service, CERT and CSO, sought to tease out the reasons why companies don’t report such breaches. The interesting tidbit here was that the 554 security executives responding cited reasons that showed they were at least weighing whether or not to report their electronic crime incidents: many (59 percent) said the damages didn’t warrant alerting the cops; half also said they didn’t have enough information about the incident to help prosecutors. (A bigger problem the survey showed, however, was that that too few companies, only about 48 percent, have a formal way to track information security breaches.)
Unfortunately the issue won’t go away. Mueller, as he did in his speech to InfraGard in Washington, must keep pointing out that terrorists and criminals can use computer networks to their advantage – just like businesses can. He must continue to appeal to the patriotism and economic interests of business people who, after all, control about 80 percent of the nation’s critical infrastructure. "Maintaining a code of silence will not benefit you or your company in the long run," Mueller sai
The challenge of true data protection spans databases, internal and external networks, physical and offsite storage, business partners and more. These resources offer expert perspective from the basics through specific key elements of data protection strategies.
Network security basics
Protection, detection, and reaction—those are the three underlying principles your security program must embody
Computer incident detection, response, forensics
Richard Bejtlich shows how to measure and improve the maturity of your incident response
A few good IT security metrics
Stop counting blocked malware attachments and measure things that can contribute to meaningful change
5 key cloud security trends
Cloud security is evolving rapidly—stay on top of it
IT risk assessment frameworks
How to do end-to-end encryption
How to compare and use enterprise antivirus
Also find sample data protection policies in CSO's tools, templates and policies library
- Introduction to VMware vCenter Site Recovery Manager 5
- Introduction to Virtualization
- Preventing Unplanned Downtime with Server Virtualization
- Secure Cloud Infrastructure and Next-Generation Data Centers - An Interactive Panel for Decision Makers
- Gartner Next Generation Network IPS Webcast
- Understand Your Data: The Future of Backup and Archiving
- Overcome Top 7 Admin Challenges of Active Directory
- Insiders Can Ruin Your Company. Take Action.
- Top Solutions and Tools to Prevent Devastating Malware
- X-Ray of the PCI Process-4 Proactive Steps
- Streamline Compliance and Increase ROI
- Beyond SFTP: Five Ways Secure Managed File Transfer Can Improve Your Business
CSO Corporate Partners
- Patch Tuesday preview, February 2012
Microsoft published its Patch Tuesday Preview for February of 2012 a few minutes ago. IT admins can expect nine bulletins to address 21 security vulnerabilities.
It looks like four bulletins will be rated critical while the rest are designated as important.
Affected Microsoft products are:
- M86 report proves water is wet
- Actor, banker, soldier, spy: Suits and Spooks Anti-Conference aims to redefine security
More Salted Hash with Bill Brenner
