Trillium Software
     

28/3/11

By Sophie Baker

Criminals are turning increasingly towards intellectual property as a ‘Cybercrime Currency’, leading to companies spending up to $1million each week in an effort to secure their most sensitive business information, reports McAfee.

Underground Economies: Intellectual Capital and Sensitive Corporate Data Now the Latest Cybercrime Currency, conducted in association with the Science Applications International Corporation (SAIC), shows that criminals have shifted from stealing personal information and are instead focusing on the corporate intellectual capital of some of the globe’s best-known organisations.

Trade secrets, marketing plans, research and development findings and source code have all been targeted, said the report – a follow-up to 2008’s Unsecured Economies. The study showed which countries were deemed the safest and least safe in which to store corporate data.

China, Russia and Pakistan are seen as the least safe for data storage – but good news for the UK, Germany and the US where storage is seen as the safest. A large number of organisations are not, however, conducting frequent risk assessments, and more than a quarter of organisations assess the threats or risks posed to their data only twice a year or less.

“Cybercriminals have shifted their focus from physical assets to data driven properties, such as trade secrets or product planning documents,” commented Simon Hunt, vice president and chief technology officer, endpoint security at McAfee. “We’ve seen significant attacks targeting this type of information. Sophisticated attacks such as Operation Aurora, and even unsophisticated attacks like Night Dragon, have infiltrated some of the largest, and seemingly most protected, corporations in the world. Criminals are targeting corporate intellectual capital and they are often succeeding.”

Scott Aken, vice president for cyber operations at SAIC, added that the distinction between insiders and outsiders is blurring. “Sophisticated attackers infiltrate a network, steal valid credentials on the network, and operate freely – just as an insider would. Having defensive strategies against these blended insider threats is essential, and organisations need insider threat tools that can predict attacks based on human behaviour.”
A quarter of organisations have had a merger/acquisition, and/or a new product/solution roll-out halted thanks to a data breach, or the credible threat of a data breach. Only half of those who did experience a data breach took steps to remediate and protect systems from future breaches. And only three in ten organisations report all data breaches they suffer, and six in ten pick and choose which they report.

The financial crisis has seen an increase in the organisations reassessing the risks of processing data outside their home country, and around a third said they are looking to increase the amount of sensitive information they store aboard – compared to one in five just two years ago.

In China, Japan, the UK and the US, more than $1million a day is spent on IT. The US, China and India are spending more than $1million per week on securing sensitive data abroad.

Home     More News


Other stories you may find of interest:

News in brief - March 2011
A round-up by FST

Banks found lacking in data safeguards
Organisations step down safeguards protecting confidential data during the testing and development of web portals and applications than during the initial production, putting customer data at huge risk, warns Informatica

Chaucer Syndicates writes a new chapter for data governance, risk and compliance
One of Lloyd's of London's independent insurance underwriting groups, Chaucer Syndicates, is introducing the Trillium Software System to cleanse its data, institute de-duplication where necessary and generally improve data quality in support of governance, risk and compliance (GRC). The software will help Chaucer ensure the quality of the information it uses to guide its syndicates towards maintaining a profitable, yet risk-balanced business book, which is compliant with their approved underwriting capacities

awards banner


Dataflux Video

markevans


FStech Whitepapers
Single Customer View in Financial Service
This white paper outlines what a single customer view is and what the UK requirements are, why this represents best practice and how it can be advantageous to the business, and the techniques and technologies that will be most effective in establishing and maintaining such an approach.
TATA Consultancy Services - Cloud Computing
Cloud computing is the convergence of virtualization, distributed applications, grid, maturity of enterprise software applications and enterprise IT management.
Genesys. Sustained Management: Changing the Game with Genesys iWD
The article explains how Genesys intelligent Workload Distribution (iWD) has the power to change the game in the contact center space based on new visibility into tracking, reporting, and performance management
Research Study: The Revolution in Self-Service Channels in the Financial Services Sector
This report analyses the growth of consumer self-service channels in key areas of the Financial Services Market
Genesys. Staffing and Workload Management:
Fleshes out the importance of properly managing contact center and back office work, especially through the alignment of employee skill sets.
Genesys. The Importance of Proper Hiring, Training, Career Path Development, Skilling, and Routing
Which explains why it is imperative to implement these factors correctly in the contact center and back office to ensure competent customer interactions.
Genesys. Rethinking Contact Center and Back Office Processes:
The Challenges of Achieving Balance and Consistency
SVC Analysis Report
Getting value from a single customer view?

This website is a part of Perspective Publishing Limited, registered in England No 2876166.