Employees Possibly Putting Corporate Infrastructure At Risk By Sharing To Much Information On Social Networking Sites, According To Research

IT security and data protection firm Sophos has called upon social networking Web sites such as Twitter and Facebook to do more to protect their millions of users, as new research is published examining the first six months of cybercrime in 2009.

The Sophos Security Threat Report examines existing and emerging security trends and has identified that criminals are doubly exploiting social networks, using them first to identify potential victims and then to attack them, both at home and at work. In Sophos’s opinion, Web 2.0 companies are concentrating on growing their user base at the expense of properly defending their existing customers from Internet threats.

The firm’s report -- available from http://www.sophos.com/securityreportjul2009 -- reveals that IT teams are worried that employees share too much personal information via social networking sites, putting their corporate infrastructure -- and the sensitive data stored on it -- at risk. The findings also indicate that a quarter of organizations have been exposed to spam, phishing or malware attacks via sites such as Twitter, Facebook, LinkedIn and MySpace.

“What’s needed is a period of introspection -- for the big Web 2.0 companies to examine their systems and determine how, now that they have gathered a huge number of members, they are going to protect them from virus writers, identity thieves, spammers and scammers,” said Graham Cluley, senior technology consultant at Sophos. “The honeymoon period of these sites is over, and personally identifiable information is at risk as a result of constant attacks that the websites are simply not mature enough to protect against.”

  • 22.5 million different samples of malware -- almost double the level of June 2008.
  • Two thirds of businesses fear that social networking endangers corporate security
  • New Web infections -- one new infected webpage discovered by Sophos every 3.6 seconds (four times faster than in first half of 2008).
  • 40,000 new suspicious files examined by SophosLabs every day.
  • United States hosts the most malware on the web (39.6 percent).
  • U.S. computers relay the most spam (15.7 percent).
  • 89.7 percent of all business e-mail is spam.

Featured

New Products

  • ResponderLink

    ResponderLink

    Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols.

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities