— March 2, 2004 — Around half of UK businesses suffered from virus infection or denial of services attacks during the last year, a new survey shows. This has risen from 41% in 2002 and just 16% in 2000. These are among the initial findings from the 2004 Department of Trade and Industry’s biennial Information Security Breaches Survey, conducted by a consortium led by PricewaterhouseCoopers. The full results of the Survey will be launched at InfoSecurity Europe in London, April 27-29.
Key findings from the telephone survey of some 1,000 companies include:
“Whilst almost every UK business has anti-virus software in place, the incidence of attack is rising. With new viruses like MyDoom and Netsky sweeping the world within hours of their release, software is only as good as its last update and increasingly companies have set their anti-virus software to automatically update itself immediately a new release is available. However, anti-virus software alone does not solve the problem ? it’s vital to install the latest operating system security updates and patches as well. To check this, companies need effective monitoring and audit processes.”
“The sophistication of the latest generation of worms demands that business takes a much more proactive stance on security. Blended threats like Blaster wreak havoc by incorporating additional viruses and Trojans and side-stepping traditional software solutions. Scanning on-demand and on a regular basis is essential for organisations to protect themselves against today’s fast-moving threats. It ensures that their security solutions are up-to-date and effective”
The 2004 DTI Information Security Breaches Survey is the most authoritative survey about this issue in the UK. It is part of the Department of Trade and Industry’s work with British industry to understand the impact of information security breaches. It aims to raise awareness among UK companies and public sector organisations of the value of effective information security management.
The survey was be conducted between October 2003 and January 2004 and is based on 1,000 telephone interviews with organisations of all sizes across all areas of the UK, plus a series of face to face interviews. A consortium led by PricewaterhouseCoopers is managing the 2004 survey. Other lead sponsors are Microsoft, Computer Associates and Entrust. Input has also come from the National Hi-tech Crime Unit, Royal Holloway, University of London, and the Information Assurance Advisory Council.
The full results of the seventh, biennial survey will be published at the InfoSecurity Europe exhibition and conference in London April 27-29.
PricewaterhouseCoopers (www.pwc.com/uk) provides industry-focused assurance, tax and advisory services for public and private clients. More than 120,000 people in 139 countries connect their thinking, experience and solutions to build public trust and enhance value for clients and their stakeholders. PricewaterhouseCoopers has one of the largest information security teams in the world; its specialists have extensive experience of investigating security breaches and in-depth knowledge of the techniques available to protect against and limit the damage from such breaches.
Unless otherwise indicated, PricewaterhouseCoopers refers to PricewaterhouseCoopers LLP a limited liability partnership incorporated in England. PricewaterhouseCoopers LLP is a member firm of PricewaterhouseCoopers International Limited.
Qualys and the Qualys logo are trademarks of Qualys, Inc. All other trademarks are the property of their respective owners.
Contact: Jane Folwell
+44 13 4484 5132
Contact: Derek Nash
020 7804 3058 / 07703 470224