Bad actors are seeking new attack vectors. With an increased use of SaaS and cloud services, servers are becoming targets via vulnerabilities in the applications they host or weaknesses in their operating systems. They are the No. 1 target for those criminals hunting down new vulnerabilities, with attacks showing a 34% increase in 2016. As a result, client and network attacks are down because it is easier and more profitable for attackers to hit the servers.
What security pros say
In addition to drawing on telemetry metrics, the report surveyed about 3,000 security pros in organizations ranging from small businesses to corporate enterprises.
The results found that 44% of all security alerts are not being investigated, and 54% of legitimate alerts don't get remediated. So the technology is catching security incidents but security teams can't keep up with responding to them. Teams are overloaded and may have issues getting gear from multiple vendors to interoperate.
Respondents blamed insufficient budgets and lack of trained personnel as part of the problem. They also pointed to interoperability problems among security platforms and certification requirements that might dictate where spending is directed.
When it came to data breaches, those who answered the survey said their effect on operations included downtime, damage to the reputation of the company brand and loss of customers.
The upside of breaches is that 38% of respondents say such fissures - their own or others - helped promote improved security. These include separating the security team from the IT team and, increasing security awareness training among end users. They are promoting risk mitigation strategies and planning for more effective responses to breaches.
Source: Network World
Sign up for CIO Asia eNewsletters.