ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Jobs
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


Security threats Toolkit

Web bigger malware threat than email

Matthew Broersma ZDNet.co.uk

Published: 15 Sep 2006 10:30 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Companies are now more likely to pick up malicious software via employee Web surfing than from the more notorious email attachment, according to a study released on Wednesday by IDC Denmark.

Nearly 40 percent of the 200 Danish companies surveyed said they'd been infected by a virus or worm, despite the fact that 75 percent had implemented a security policy, IDC said. But the malware in question is no longer primarily making its way through email, as in the past.

"There is a common misconception that emails constitute the biggest security threat from the Internet," said Per Andersen, IDC Denmark's managing director, in a statement. "But the survey shows that up to 30 percent of companies with 500 or more staff have been infected as a result of Internet surfing, while only 20–25 percent of the same companies experienced viruses and worms from emails."

The risk of infection is about five times greater for companies that allow Internet usage by staff to go on unhindered and unmonitored, Andersen said.

The problem doesn't go away for companies that ban private Internet use, because often such policies aren't enforced, IDC found: about 30 percent of management at such companies said staff accessed the Internet for personal use during working hours.

IDC believes banning personal Internet use isn't realistic, particularly as a long-term solution. Instead, the company recommends closer monitoring of staff Internet use, using tools that give management an overview of time spent and behaviour patterns online.

"It can certainly be done in such a way that it does not constitute outright monitoring of the actions of every member of staff," Andersen stated.

Attacks can come from relatively innocuous online sources, according to Andersen. He cited the case of a poker Web site that placed a Trojan horse on users' PCs when they downloaded the site's help program.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with Konica

Did you find this article useful?
314 out of 487 people found this useful


In association with Intel

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats



Company/Topic Alerts

Create a new alert from the list below:







Related Jobs

Head of Development & Business Analysis - West Midlands

Systems Administrator

Helpline Operator

Sentry Posts Blog

Toshiba touts Quantum Key Distribution

Toshiba research scientists have developed a method of distributing quantum keys more efficiently, the company has claimed in a statement: "[Quantum Key Distribution -- ] QKD --... More

Post a comment

Virtual Teams: Small Business Innovati...

Virtual Teams: Small Business Innovation Author: Eric Everson, Founder – MyMobiSafe.com As the founder of MyMobiSafe.com, I’ve found that because of our presence in the industry... More

Post a comment

Mobile Security and Innovation: An Ope...

Mobile Security and Innovation: An Open Case Author: Eric Everson, Founder MyMobiSafe.com The times are changing in the mobile industry as “big wireless” in the US Markets are calling... More

Post a comment

Featured Oracle Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

See All White Papers