Top 5 Mistakes That Leave People Open to Compromise

OSymantec. TOP 5 MISTAKES WAYS PEOPLE LEAVE THEMSELVES OPEN TO COMPROMISE FROM HACKERS ACME INDUSTRIES ASSUMING OS PATCHING IS GOOD ENOUGH Phishing - One in 377.4 emails identified as phishing (an increase of 0.225 percentage points since November) I Applications and operating systems need to be updated regularly to avoid being attacked (e.g. Java) I Poor application configuration creates vulnerabilities in the system FAILING TO ENFORCE CONFIGURATION Malware - One in 277.8 emails contained malware (a decrease of 0.03 percentage points since November) I Having open permissions on servers and poor I Failing to audit admin access to detect anomalous behaviour access control DELLO1 Using obvious computer names making it easy to identify critical internal systems I Not enforcing best practice configuration settings so systems can be easily attacked NOT ENFORCING PASSWORD POLICIES Spam - 70.6 percent (an increase of 1.8 percentage points since November) PASSWOR ABC1234 WELCOME Poorly enforced password policies leave easily guessable passwords Using default passwords - particularly on network and manufacturer equipment NOT EDUCATING USERS 61% of malicious web sites are genuine sites that have been compromised f TUsers failing to understand risky and insecure IFailing to educate users on social media and behaviour online behaviour INSECURELY STORING DATA Symantec stats show decreasing levels of mal- ware in e-mails and an increase in web attacks. In January 2013, 2,256 malicious websites were blocked, an increase of 196.1 percent, reflecting a change in malware distribution. TOP I Storing sensitive data on I Allowing unsecured access to data open shares I Failing to detect sensitive data leaving the organisation Cyber Readiness Challenge It's a competition designed for all levels of technical expertise that puts partici- pants in the hacker's shoes to understand their targets so they can ultimately better protect their company or agency. Symantec. PROTECT AND PREVAIL 国 | OSymantec. TOP 5 MISTAKES WAYS PEOPLE LEAVE THEMSELVES OPEN TO COMPROMISE FROM HACKERS ACME INDUSTRIES ASSUMING OS PATCHING IS GOOD ENOUGH Phishing - One in 377.4 emails identified as phishing (an increase of 0.225 percentage points since November) I Applications and operating systems need to be updated regularly to avoid being attacked (e.g. Java) I Poor application configuration creates vulnerabilities in the system FAILING TO ENFORCE CONFIGURATION Malware - One in 277.8 emails contained malware (a decrease of 0.03 percentage points since November) I Having open permissions on servers and poor I Failing to audit admin access to detect anomalous behaviour access control DELLO1 Using obvious computer names making it easy to identify critical internal systems I Not enforcing best practice configuration settings so systems can be easily attacked NOT ENFORCING PASSWORD POLICIES Spam - 70.6 percent (an increase of 1.8 percentage points since November) PASSWOR ABC1234 WELCOME Poorly enforced password policies leave easily guessable passwords Using default passwords - particularly on network and manufacturer equipment NOT EDUCATING USERS 61% of malicious web sites are genuine sites that have been compromised f TUsers failing to understand risky and insecure IFailing to educate users on social media and behaviour online behaviour INSECURELY STORING DATA Symantec stats show decreasing levels of mal- ware in e-mails and an increase in web attacks. In January 2013, 2,256 malicious websites were blocked, an increase of 196.1 percent, reflecting a change in malware distribution. TOP I Storing sensitive data on I Allowing unsecured access to data open shares I Failing to detect sensitive data leaving the organisation Cyber Readiness Challenge It's a competition designed for all levels of technical expertise that puts partici- pants in the hacker's shoes to understand their targets so they can ultimately better protect their company or agency. Symantec. PROTECT AND PREVAIL 国 |