Secure Computing Corporation (NASDAQ: SCUR), a leading enterprise
gateway security company, today announced the results of a study
conducted during August and September 2008 in the US, Canada and
Europe. The study surveyed 199 international security experts and
other "industry insiders" from utilities, oil and gas, financial
services, government, telecommunications, transportation and other
critical infrastructure industries. Despite a growing body of
legislation and regulation, more than half of these experts
believed that most critical infrastructure continues to be
vulnerable to cyber attack. Further, a majority of respondents said
that major attacks have already begun or are likely to occur in the
next 12 months.
"An attack on any one of these industries could cause widespread
economic disruptions, major environmental disasters, loss of
property and even loss of life," said Elan Winkler, director of
critical infrastructure solutions for Secure Computing. "This study
revealed that many critical infrastructure organizations are simply
not ready for the cyber attacks which are coming soon."
Rick Nicholson, VP of Research for Energy Insights, an IDC
company, who authored the white paper(1) based on the survey,
added, "Most utility CIOs believe that their companies will be
compliant with relevant standards, but still have a long way to go
before being adequately prepared for all cyber attacks."
In the study, respondents were asked to indicate the state of
readiness for eight different industries. More than 50 percent of
respondents believed that utilities, oil and gas, transportation,
telecommunications, chemical, emergency services and
postal/shipping industries were not prepared. For some sectors,
such as postal/shipping and transportation, as many as three out of
four experts indicated that the infrastructure was not ready for
attack. Only the financial services industry was considered
prepared, although nearly 40 percent believed that even this sector
was not ready to defend itself.
Survey participants were also asked which industry was the
biggest target, which was the most vulnerable to attack and which
was the most detrimental if breached. The insiders picked the
energy sector in all three cases, with 33 percent saying it was the
biggest target, 30 percent saying it was the most vulnerable and 42
percent saying it would be the most detrimental if attacked.
When asked to name the biggest bottleneck to improving cyber
security, the largest number of experts (29 percent) pointed to the
cost of security measures. Apathy was the second most likely to be
selected as the primary bottleneck, with government bureaucracy and
internal issues tying for third.
Risk of Cyber Attack Likely to Grow
Study participants from North America were also asked how soon
major exploits of critical infrastructure would occur. More than 50
percent answered that the attacks had already begun. Another 14
percent said a major exploit was likely in the next 12 months,
while only 2 percent said such an exploit would never occur.
At the same time that attacks are becoming more likely, many
networks are becoming less secure. Energy Insights identified three
trends which are likely to increase the vulnerability of critical
infrastructure in the future:
-- Interconnectivity among networks will expand. Already 62 percent of
North American respondents said that their control systems were directly
connected to an IP-based network or the Internet. A full 98 percent of
respondents believed this makes them more vulnerable.
-- Intelligent grid and similar initiative will continue to grow. As
companies deploy new technologies such as smart meters, sensors and
advanced communications networks, they run the risk of increasing their
vulnerability unless they include security as an integral part of the
projects.
-- Cost cutting efforts will not go away. During times of economic
hardship, organizations are expected to increase their use of "standard" IT
platforms, further increasing their vulnerability to attack.
Recommendations Based on Study Findings
The Energy Insights white paper sponsored by Secure Computing
recommends that critical infrastructure asset owners and operators
take five steps towards greater cyber security:
-- Performing ongoing vulnerability assessments
-- Vigilant monitoring of network automation and control systems
-- Sharing information about threats and attacks through the industry
Information Sharing and Analysis Centers (ISACs) such as the electricity
sector ISAC and up the chain of command within organizations
-- Taking an enterprise approach that includes both information
technology and operations technology environments
-- Thinking beyond regulatory compliance.
As a global leader in cyber security, Secure Computing provides
a number of resources to help organizations address these issues.
With more than 14 years' experience protecting critical
infrastructure networks in 31 countries, Secure Computing has
accumulated a wealth of research, educational materials, tools,
expert advice, and other materials that it is making available
online at http://www.securecomputing.com/cybersecurity.
Secure Computing is hosting a live webcast on November 12, 2008
at 2:00pm EST, "Critical Infrastructure Threats Revealed,"
featuring Energy Insights' Rick Nicholson to review the cyber
security study findings and recommendations. Visit
http://www.securecomputing.com/cybersecurity to register and to
obtain a copy of the Energy Insights white paper.
About Secure Computing
Secure Computing Corporation (NASDAQ: SCUR), a leading provider
of enterprise gateway security, delivers a comprehensive set of
solutions that help customers protect their critical Web, email and
network assets. Over half the Fortune 50 and Fortune 500 are part
of our more than 22,000 global customers, supported by a worldwide
network of more than 2,000 partners. The company is headquartered
in San Jose, Calif., and has offices worldwide. For more
information, see http://www.securecomputing.com.
All product names and trademarks are the property of their
respective firms.
This press release may contain forward-looking statements which
are made pursuant to the safe harbor provisions of the Private
Securities Litigation Reform Act of 1995. Investors are cautioned
that these forward-looking statements involve risks and
uncertainties that could cause actual results to differ materially
from current expectations. For example, there can be no assurance
that demand for the company's products will continue at current or
greater levels, or that the company will continue to grow revenues,
or be profitable, or that the company will be able to motivate and
retain key employees, staff current and future projects in a
cost-effective manner, or effectively control its marketing,
research, development and administrative costs. There are also
risks that the company's pursuit of providing network security
technology might not be successful, or that if successful, it will
not materially enhance the company's financial performance; that
changes in customer requirements and other general economic and
political uncertainties and weaknesses in geographic regions of the
world could impact the company's relationship with its customers,
partners and alliances; and that delays in product development,
competitive pressures or technical difficulties could impact timely
delivery of next-generation products; and other risks and
uncertainties that are described from time to time in our periodic
reports filed with the Securities and Exchange Commission. The
company specifically disclaims any responsibility for updating
these forward-looking statements.
(1) Energy Insights, an IDC company. White Paper sponsored by
Secure Computing, Critical Infrastructure Cyber Security: Survey
Findings and Analysis, November 2008
Contact: Ally Zwahlen Secure Computing Corporation 925-288-4175
Email Contact Paula Dunne Contos Dunne Communications LLC
408-776-1400 408-893-8750 cell Email Contact
Secure Computing (MM) (NASDAQ:SCUR)
Historical Stock Chart
Von Jun 2024 bis Jul 2024
Secure Computing (MM) (NASDAQ:SCUR)
Historical Stock Chart
Von Jul 2023 bis Jul 2024