Endpoint
12/11/2012
06:49 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Bond And Bourne Fuel Belief That Cyberhacking Is Easy So Why Fight It, U.K. Study Shows

Adults across the U.K. are increasingly fatalistic about their level of online risk, according to a new study by YouGov plc for Kaspersky Lab

ABINGDON, England, December 11, 2012 /PRNewswire/ --

Research from Kaspersky Lab reveals half of online adults believe cybercriminals can break into any device they choose - and most consumers are content to leave security to Internet sites and device manufacturers

Adults across the UK are increasingly fatalistic about their level of online risk, according to a new study by YouGov plc for Kaspersky Lab. As a result, consumers are exposing themselves to a high risk of online identity theft which could result not only in financial loss, but also in the headache which surrounds the repercussions. Half the online adults surveyed believe cybercriminals can hack into any computer, laptop, smartphone or tablet they set their sights on; a perception likely to be influenced by film images of experts hacking easily into even the most secure-looking, password-protected and sophisticated computers and smartphones.

Only a minority of the 2,008 online adults surveyed have bothered to install any additional Internet security software which can protect consumers whilst banking online. Instead, 80% of those who bank online rely mainly or solely on the bank's own pre-installed security systems and just 45% have added their own security. Over a third (39%) of respondents say they have confidence in the bank's security systems; a figure that could also reflect a general impression that the bank will cover the cost of any financial losses incurred fraudulently. Yet consumers are not taking into consideration the emotional effects and the time and effort they will need to spend recovering the online theft.

Ramandeep Sahota, a 24-year-old from Reading, was unlucky enough to experience a cybercriminal attack when her personal details were exposed whilst shopping online without sufficient Internet protection. She explains: "Somehow I managed to disclose my online banking information to the wrong people - cybercriminals.

Over a period of a few weeks, the online fraudsters took a series of very small payments directly from my bank account - varying in amounts from GBP1 to GBP35.

This stealthy method of theft meant that I didn't notice all the money was leaving my account until nearly GBP200 had been taken. At this point I contacted my bank to alert them to the fact I was experiencing theft. Although the money was recovered eventually by my bank, it took over five months to resolve and I had to spend hours on the phone to the bank trying to prove that the payments were made fraudulently. Online theft definitely isn't something I'll take lightly again."

"The research findings suggest that when it comes to online information or identity theft a growing number of consumers are convinced there is little they can do to prevent a determined hacker from succeeding," said David Emm, senior security researcher at Kaspersky Lab. "Today we are bombarded with glamorous images in TV dramas and the latest blockbusters of people breaking easily into hard drives and phones and getting their hands on someone's entire digital life.

Coupled with growing consumer confusion about the whole cyber risk landscape - an online search of the term 'cyber-threat' today returns nearly 11 million results - it is not surprising that people are feeling overwhelmed and opting for inaction. However, the risks of such inaction should not be underestimated.

We have seen how financially and emotionally devastating cybercrime can be, and work hard to help consumers address the risks they can see and the ones they can't."

Simple measures can be taken to minimise the risk involved in everyday online activities, all of which drastically reduce the threat of becoming cybercrime's next victim. Emm suggests the below top tips for staying safe online:

1) Use an effective Internet security product.

2) Keep your operating system up-to-date.

3) Keep all applications up-to-date.

4) Use a secure browser.

5) Practise safe computing, e.g. use unique passwords for all online accounts -

at least eight characters and a mixture of letters, numbers and symbols.

6) Don't "jailbreak" or root your mobile device.

7) Don't install apps from untrusted sources.

8) Don't use untrusted wi-fi networks for confidential transactions.

9) Don't just rely on a simple PIN for your mobile device.

10) Secure any confidential data on your computer or mobile device.

The newly launched Kaspersky Internet Security 2013 helps consumers protect their most personal and financial details as they shop, surf, visit social networks and bank online. To learn more about Kaspersky Internet Security 2013 and Kaspersky Anti-Virus 2013, please visit: http://www.kaspersky.co.uk.

Kaspersky Lab Newsroom

Kaspersky Lab has launched a new online newsroom, Kaspersky Lab Newsroom Europe (http://newsroom.kaspersky.eu/en), for journalists throughout Europe. The newsroom is specifically designed to serve many of the media's most common requests, making it easier for journalists to find product and corporate information, facts and figures, editorial copy, images, videos and audio files, as well as details about the appropriate PR contacts.

About Kaspersky Lab

Kaspersky Lab is the world's largest privately held vendor of endpoint protection solutions. The company is ranked among the world's top four vendors of security solutions for endpoint users*. Throughout its 15-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for consumers, SMBs and Enterprises. The company currently operates in almost 200 countries across the globe, providing protection for over 300 million users worldwide. Learn more at http://www.kaspersky.co.uk. For the latest on antivirus, anti-spyware, anti-spam and other IT security issues and trends, visit: http://www.securelist.com.

*The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2010. The rating was published in the IDC report Worldwide IT Security Products 2011-2015 Forecast and 2010 Vendor Shares - December 2011. The report ranked software vendors according to earnings from sales of endpoint security solutions in 2010.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2382
Published: 2014-11-20
The DfDiskLo.sys driver in Faronics Deep Freeze Standard and Enterprise 8.10 and earlier allows local administrators to cause a denial of service (crash) and execute arbitrary code via a crafted IOCTL request that writes to arbitrary memory locations, related to the IofCallDriver function.

CVE-2014-3625
Published: 2014-11-20
Directory traversal vulnerability in Pivitol Spring Framework 3.0.4 through 3.2.x before 3.2.12, 4.0.x before 4.0.8, and 4.1.x before 4.1.2 allows remote attackers to read arbitrary files via unspecified vectors, related to static resource handling.

CVE-2014-8387
Published: 2014-11-20
cgi/utility.cgi in Advantech EKI-6340 2.05 Wi-Fi Mesh Access Point allows remote authenticated users to execute arbitrary commands via shell metacharacters in the pinghost parameter to ping.cgi.

CVE-2014-8493
Published: 2014-11-20
ZTE ZXHN H108L with firmware 4.0.0d_ZRQ_GR4 allows remote attackers to modify the CWMP configuration via a crafted request to Forms/access_cwmp_1.

CVE-2014-8767
Published: 2014-11-20
Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allows remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?