Your SlideShare is downloading. ×
  • Like
Information Security Incidents Survey  in Russia
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Now you can save presentations on your phone or tablet

Available for both IPhone and Android

Text the download link to your phone

Standard text messaging rates apply

Information Security Incidents Survey in Russia

  • 210 views
Published

 

Published in Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
210
On SlideShare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
9
Comments
0
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. Information Security Incidents Survey in Russia
  • 2. Survey among the largest companies - Top 100 Number of company’s hosts Source:  Posi,ve  Research  Center,  Survey  among  CISOs  of  Top  100  companies,  May  2014    
  • 3. Industries in the Survey
  • 4. Did you have information security incidents in 2013? All  the  companies  had  such  incidents.   58%  of  all  incidents  affected  the  availability  of  internal  infrastructure  or  services.  
  • 5. Incident types
  • 6. Which threats are the most dangerous?
  • 7. In fact … •  2  vulners    –  to  hack  a  corporate  network’s  perimeter   •  2  steps  (2013)            vs   3  steps  (2012)     •  82%  successful  aQack  –  low  aQacker  qualifica,on   •  100%  -­‐  control  cri,cal  resources  from  internal   network  (83%    -­‐  2012)  
  • 8. Critical vulnerabilities fixing time
  • 9. In fact … •  57%  system  -­‐  cri,cal  vulnerabili,es  (unpatched  soWware)   •  57%  -­‐  2013      vs   45%  -­‐  2012   •  32  month  -­‐  average  age  of  uninstall  updates       •  Absolute  Champion  –  nine-­‐year-­‐old  vulnerability  (CVE-­‐2004-­‐0790)  
  • 10. First-priority problems