Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

The Enemy Without

Page:

On the Rise

What we do know is increasingly disturbing. A study of computer use in Australia's top 350 organisations in 1999 by the Victorian Computer Crime Squad and Deloitte Touche Tohmatsu found one in three had recorded unauthorised computer use and in 20 per cent of cases data was altered or destroyed.

IDC recently warned security breaches in the form of corporate espionage, cyberactivism, and cyberterrorism will become more prevalent in the form of vandalised Web sites, denial of service at e-commerce and support sites, and breach of trust. The research firm cites IT managers as saying 56 per cent of all discovered security breaches were illegally performed by internal people. In Australia, an encounter with a security breach such as a virus attack or unauthorised access to corporate resources is the primary driver motivating IT managers to deploy security measures for their enterprise, the research company says.

Access control will re-emerge as a new market to address internal threats and rising concern about the vulnerability of corporate data, according to IDC. It also predicts that the intrusion detection and vulnerability assessment sub-segments will become extremely popular, due to increasing concern of both external and internal threats.

"Enterprise focus on these areas will shift to a more equal balance between internal and external threats. In addition to virus assaults, unauthorised activities such as access to company information, usage of company IS systems, and modification of terminal configurations are the next most familiar types of security infringements Australian enterprises have come across. As enterprises open their virtual networks to accommodate the exchange of information and resources via the Internet, intranets, and extranets, these enterprises concurrently fall vulnerable to having undesired parties tamper and misuse corporate data and resources.

"This problem is further exacerbated by the fact that violations such as these are sometimes carried out not just by outsiders but by internal staff as well," IDC says.

But there can still be no definitive answer to the question: "How much of a threat is industrial espionage?"

Page:

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: AusCert, Australian Computer Emergency Response Team, Carnegie Mellon University, CERT, Computer Emergency Response Team, Computer Security Institute, Defence Department, Deloitte Touche Tohmatsu, Deloitte Touche Tohmatsu, Drake, eSec, FBI, Good Guys, IDC, Janteknology, Kroll, Mellon, Netsafe, PeopleSoft, PricewaterhouseCoopers, PriceWaterHouseCoopers, Wall Street

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Whitepapers
Latest Stories
Community Comments
Latest Blog Posts
Whitepapers
  • Managed Services Strategy Guide
    If you’ve heard the term managed services mentioned in relation to a broad range of different services, you could be left wondering what the phrase ‘managed services’ actually means. In simplest terms, managed services are any aspect of your business that you outsource to a third party to manage. This Computerworld Strategy Guide will review outsourcing options available and outline how managed services can help to reduce running costs for different aspects of your business, in turn increasing profitability within your business.
    Learn more »
  • High Availability with Oracle Database 11g Release 2
    This white paper reviews the common causes of application downtime and discusses how technologies available in the Oracle Database can help avoid costly downtime, enable rapid recovery, and minimise impact from planned outages. Read on now.
    Learn more »
  • Smarter Storage and Data Management for Virtual Server Environments
    There is a huge transformation happening in IT organisations, migrating from single-purpose physical servers to consolidated virtual machine technologies. The benefits of virtualisation are many: cutting acquisition, management and facilities costs by reducing the number of physical machines; increasing service levels through faster server provisioning; and enabling new delivery models such as cloud services. However, virtualizing servers does not reduce the amount of data that is created and stored; actually it can have the opposite affect as virtual machines are moved or de-provisioned. IBM provides advanced data protection and flexible recovery capabilities for VMware, addressing data management challenges.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments

HP and IDG news, product videos and resources