Attacks/Breaches

7/30/2015
10:40 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Most Major Financial Hacks Completely Covered Up

Lieberman Software survey reveals most companies are persistently targeted by cyber attacks and the public only finds out about a small portion of security breaches

Los Angeles, CA – June 30, 2015 - Despite devastating cyber attacks being reported daily in today’s media, a new survey from Lieberman Software Corporation reveals that what we see in the press is just a glimpse of reality. 87 percent of IT professionals stated that they believe large financial hacks are happening more often than reported, and right under the nose of security auditors.

The survey also discovered that more than half (51 percent) of IT professionals believe their corporate network is being targeted continuously by hackers. Meanwhile, 71 percent of respondents think that an Advanced Persistent Threat attack will attempt to breach their organization in the next six months. The study was conducted at Microsoft Ignite in May 2015 and measured the attitudes of nearly 150 IT professionals.

Commenting on the survey findings, Philip Lieberman, CEO of Lieberman Software Corporation, said: “The fact that IT professionals believe that data breaches are occurring more frequently than reported is revealing. Due to today’s advanced cyber attacks, intruders are already within most IT environments, are undetectable, and have access to credentials on every compromised machine.”

“Of course, it’s unlikely any company will ever willingly go public about a data breach because of the negative impact it can have on the organization’s reputation and share price. However, this certainly does not mean keeping security incidents a secret is the right thing to do, particularly if customer data is involved.”

Attitudes on Federal Cyber Security Sanctions

Another finding from the study is that 89 percent of respondents believe that recently announced US federal government cyber security sanctions provide a deterrent to cyber criminals. The referenced sanctions allow the United States government to enforce financial and travel restrictions on suspected cyber criminals.

“The new sanctions are an excellent move to provide clarity and direction on how to take action against nation states and criminals who use cyber-space to achieve unlawful economic advantage against US commercial entities,” continued Lieberman. “I agree with the survey respondents that the changes will provide much needed relief for US companies victimized by state-sponsored cyber attacks, as well as clarity for US government agencies tasked with enforcing laws and treaties.”

For more information on the survey, visit http://www.liebsoft.com/IT-Professional-Survey/.

About Lieberman Software Corporation

Lieberman Software proactively stops cyber attacks that bypass conventional enterprise defenses and penetrate the network perimeter. The company provides award-winning privilege management and security management products to more than 1,400 customers worldwide, including nearly half of the US Fortune 50. By automatically securing privileged access - both on-premises and in the cloud - Lieberman Software controls access to systems with sensitive data, and defends against malicious insiders, zero day attacks and other advanced cyber threats. Lieberman Software is headquartered in Los Angeles, CA, with offices and channel partners located around the world. For more information, visit www.liebsoft.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Government Shutdown Brings Certificate Lapse Woes
Curtis Franklin Jr., Senior Editor at Dark Reading,  1/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security 2018
This Dark Reading Tech Digest explores the biggest news stories of 2018 that shaped the cybersecurity landscape.
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-20735
PUBLISHED: 2019-01-17
** DISPUTED ** An issue was discovered in BMC PATROL Agent through 11.3.01. It was found that the PatrolCli application can allow for lateral movement and escalation of privilege inside a Windows Active Directory environment. It was found that by default the PatrolCli / PATROL Agent application only...
CVE-2019-0624
PUBLISHED: 2019-01-17
A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted request, aka "Skype for Business 2015 Spoofing Vulnerability." This affects Skype.
CVE-2019-0646
PUBLISHED: 2019-01-17
A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka "Team Foundation Server Cross-site Scripting Vulnerability." This affects Team.
CVE-2019-0647
PUBLISHED: 2019-01-17
An information disclosure vulnerability exists when Team Foundation Server does not properly handle variables marked as secret, aka "Team Foundation Server Information Disclosure Vulnerability." This affects Team.
CVE-2018-20727
PUBLISHED: 2019-01-17
Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow authenticated users to execute code on the server side via the flt parameter to Nodes-Traffic.php, the dv parameter to Devices-Graph.php, or the tit parameter to drawmap.php.