Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

7/24/2009
03:24 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

44% Of SMBs Admit To Falling Victim To Cybercrime

Of any threat, viruses affected their companies the most, according to Panda Security

GLENDALE, Calif., July 24 /PRNewswire/ -- Panda Security, the Cloud Security Company, today announced its worldwide barometer on the status of security at small and medium-sized businesses (SMBs)(1). According to the study, which surveyed 5,760 companies worldwide, 44 percent of the more than 1,400 US respondents have recently been infected by Internet threats. Worldwide, 58 percent were affected, with Brazil showing the highest infection rate at 86 percent. Only 8 percent of SMBs in Germany reported infections.

US SMBs cited that, of any threat, viruses affected their companies the most, at 41 percent, and they ranked spyware second, at 26 percent. Worldwide, viruses also ranked first, with 55 percent of respondents naming them the most potent threat to their businesses. Ten percent of SMBs in the US were affected to the point of having to stop production, with a worldwide average of 30 percent.

While 97 percent of US SMBs surveyed have installed antivirus and 95 percent claim their security systems are up to date, many SMBs still lack common security protection. Twenty-nine percent of respondents disclosed they have no antispam in place, 22 percent no antispyware and 16 percent no firewall. In addition, 52 percent of SMBs said they lacked any Web filtering solution. Of those US SMBs without any security systems in place, 27 percent cited they have not implemented them because they aren't important or necessary, and 20 percent because they are expensive.

"Despite strong efforts in the US to educate businesses about the importance of computer security, a staggering number of small and medium-sized businesses have become victims of cybercrime," said Luis Corrons, PandaLabs Technical Director. "It is especially alarming to see so many businesses fail to adopt the most basic security measures, such as anti-spam and firewall solutions."

Panda Security's SMB solutions provide innovative and affordable technologies that can combat all types of threats in all network layers for companies of all sizes. Recognizing that small and medium-sized businesses have limited in-house resources and budgets for IT security, Panda's products utilize its proven cloud computing and security-as-a-service capabilities to minimize investments in overall management and IT infrastructure. To learn more about Panda's full set of security solutions for SMBs, please visit http://www.pandasecurity.com/usa/enterprise/.

About Panda Security

Founded in 1990, Panda Security is the world's leading provider of cloud-based security solutions with products available in more than 23 languages and millions of users located in 195 countries around the world. Panda Security was the first IT security company to harness the power of cloud computing with its Collective Intelligence technology. This innovative security model can automatically analyze and classify thousands of new malware samples per day, guaranteeing corporate customers and home users the most effective protection against Internet threats with minimum impact on PC performance. Panda Security has 56 offices throughout the globe with US headquarters in California and European headquarters in Spain. For more information, log on to http://www.pandasecurity.com/.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Oldest First  |  Newest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/3/2020
'BootHole' Vulnerability Exposes Secure Boot Devices to Attack
Kelly Sheridan, Staff Editor, Dark Reading,  7/29/2020
Average Cost of a Data Breach: $3.86 Million
Jai Vijayan, Contributing Writer,  7/29/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-18112
PUBLISHED: 2020-08-05
Affected versions of Atlassian Fisheye allow remote attackers to view the HTTP password of a repository via an Information Disclosure vulnerability in the logging feature. The affected versions are before version 4.8.3.
CVE-2020-15109
PUBLISHED: 2020-08-04
In solidus before versions 2.8.6, 2.9.6, and 2.10.2, there is an bility to change order address without triggering address validations. This vulnerability allows a malicious customer to craft request data with parameters that allow changing the address of the current order without changing the shipm...
CVE-2020-16847
PUBLISHED: 2020-08-04
Extreme Analytics in Extreme Management Center before 8.5.0.169 allows unauthenticated reflected XSS via a parameter in a GET request, aka CFD-4887.
CVE-2020-15135
PUBLISHED: 2020-08-04
save-server (npm package) before version 1.05 is affected by a CSRF vulnerability, as there is no CSRF mitigation (Tokens etc.). The fix introduced in version version 1.05 unintentionally breaks uploading so version v1.0.7 is the fixed version. This is patched by implementing Double submit. The CSRF...
CVE-2020-13522
PUBLISHED: 2020-08-04
An exploitable arbitrary file delete vulnerability exists in SoftPerfect RAM Disk 4.1 spvve.sys driver. A specially crafted I/O request packet (IRP) can allow an unprivileged user to delete any file on the filesystem. An attacker can send a malicious IRP to trigger this vulnerability.