Support us by visiting our sponsors and win a €20 Amazon Voucher every month

Follow maltainfosec on TwitterTwitter or RSS 2.0 feed

Dec 31

Reflections – CSI Computer Crime and Security Survey 2007

Articles No comments »


This is the 12th issue of the survey; and it is also the first year where the survey is being administered totally by the CSI. In previous years, as some may know, the FBI participated in the generation of this report but it looks like they were too busy this year ;-)

These are some of the key findings from the participants in this year’s survey:


• The average annual loss reported in this year’s survey shot up to $350,424 from $168,000 the previous year. Not since the 2004 report have average losses been this high.

• Almost one-fifth (18 percent) of those respondents who suffered one or more kinds of security incident further said they’d suffered a “targeted attack,” defined as a malware attack aimed exclusively at their organization or at organizations within a small subset of the general population.

• Financial fraud overtook virus attacks as the source of the greatest financial losses. Virus losses, which had been the leading cause of loss for seven straight years, fell to second place. If separate categories concerned with the loss of customer and proprietary data are lumped together, however, then that combined category would be the second-worst cause of financial loss.

Another significant cause of loss was system penetration by outsiders.

• Insider abuse of network access or e-mail (such as trafficking in pornography or pirated software)
edged out virus incidents as the most prevalent security problem, with 59 and 52 percent of respondents reporting each respectively.

• When asked generally whether they’d suffered a security incident, 46 percent of respondents said yes, down from 53 percent last year and 56 percent the year before.

• The percentage of organizations reporting computer intrusions to law enforcement continued upward after reversing a multi-year decline over the past two years, standing now at 29 percent as compared to 25 percent in last year’s report.

The statistic that really impressed me was the Types of Attacks/Misuse Detected in the Last 12 Months. Positively enough, Viruses continue on their fast descent as the slope gets steeper each year. However, as Insider Abuse appeared to be under control these last two years, it has spiked back up to a substantial 59%.

In the Top 5 we can also find Laptop Theft, Phishing and IM.

(Enlarge the image below for a detailed description)


You can download the survey in PDF format, here.


Best wishes for 2008!

Posted by Giannella De Leonardo

4103 hits

0 Trackbacks

Trackback specific URI for this entry
  1. No Trackbacks

0 Comments

Display comments as(Linear | Threaded)
  1. No comments

Add Comment


Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.
E-Mail addresses will not be displayed and will only be used for E-Mail notifications.

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA

Please consider sending us a small donation to keep this site going. Click the PayPal logo below. Thank you!