A survey of UK organisation's found that 41% of IT managers were 'highly or extremely' concerned about being the victim of an attack compared to 29% in 2012. Carried out by Vanson Bourne, the survey compared attitudes over the last two years among 100 mid to large-sized UK enterprises.
The survey also found that the number of UK organizations experiencing attacks year-on-year had climbed to 25% in 2013 from 18% in 2012. IT managers in the financial sector were particularly worried with 56% now citing a high or extreme level of concern versus 28% last year.
Thirty-one percent of respondents said they already had specialized anti-DDoS technology in place. Thirty-six percent stated that they were relying solely on their firewalls to protect them against DDoS attacks and did not intend to augment their protection. Another 24% of respondents said they had a firewall in place but intended to purchase specific anti-DDoS technology.
Bob Tarzey analyst and director at UK based analyst firm commented, " Quocirca has seen the same results with its own research. Organisations believe they have the basis for protection against targeted attacks, such as DDoS, when in fact they are referring to traditional security technologies. To be fair, many do understand the changing nature of the threats faced, but over-estimate their capability to mitigate them."
Another major change over last year's survey was the perceived motivation for attacks. In 2012 political motives were most commonly cited by 33% of respondents, while in 2013 36% of respondents blamed 'Just for Laughs' as the driving motivation. However, motives varied dramatically between vertical sectors; with the retail and financial sector heavily favouring financial extortion as the main motivation behind the attacks and the manufacturing sector unanimously blaming political reasons. Another interesting finding from the survey is the increasing sophistication and variety of different types of targeted attacks, as 33% of attacks were application layer DDoS attacks, 37% volumetric attacks and 30% were other types of targeted or zero day attacks.
Ashley Stevenson, CEO of Corero comments: "It's interesting to note that in spite of the significant increase in perceived protection against DDoS attacks over the last year, IT managers are more concerned than ever about the threat of an attack. What's clearly apparent from this survey is that IT managers still do not properly understand the variety and sophistication of DDoS attacks and the risks that their organisations are taking in relying on firewalls to protect them."
About Corero Network Security
Corero Network Security (LSE: CNS), an organisation's First Line of Defence, is an international network security company and a leading provider of Distributed Denial of Service (DDoS) and next generation security solutions. As the First Line of Defence, Corero's products and services stop attacks at the perimeter including DDoS, server targeted exploits, and zero day, protecting IT infrastructure and eliminating downtime. Customers include enterprises across industries from banking, to financial services, gaming, education, retail and critical infrastructure as well as service providers and government organizations worldwide. Corero's solutions are dynamic and automatically respond to evolving cyber attacks, known and unknown, allowing existing IT infrastructure -- such as firewalls, which are ineffective at stopping much of today's unwanted traffic at the perimeter, to perform their intended purposes. Corero's products are transparent and highly scalable. Corero is headquartered in Hudson, Massachusetts with offices around the world. www.corero.com.