Information Age: News, analysis & insight for IT & business leaders

Security laws have not made businesses safe, say hackers

25 August 2009  Pete Swabey

Government regulation has had no affect on hackers’ ability to access corporate networks, according to hacker conference poll

Government attempts to improve information security through regulation have had no impact on the ability of hackers to break into corporate networks, according to 70% of self-identified hackers polled at the Defcon conference in Las Vegas earlier this month.

Furthermore, 15% of respondents said they believed that “regulations introduced by governments worldwide to implement privacy, security and process controls” had made hacking easier.

"While standards such as PCI-DSS provide a good baseline [for example], organisations that assume achieving PCI compliance will solve their security woes are in for a rude awakening," said Michael Hamelin, chief security architect at Tufin Technologies, the company that conducted a poll. This month's Information Age cover feaure on the risk management approach to IT security found this view to be increasingly common.

The poll of 79 delegates at the hackers convention found that 96% believe all security investments are worthless unless the firewall is properly configured and monitored.

It also threw some light onto the ‘working’ habits of hackers. For example, the most popular time to hack is weekday evenings, with only 15% of respondents preferring the weekends.

IT security managers currently on their summer holidays can relax in peace; 89% of respondents said that the summer holidays would have little impact on their hacking activity. The winter holidays are a different matter, however: 56% of respondents said that Christmas is the best time for corporate hacking.

Information Age Autumn Forum

Join us at Enterprise Security & Continuity 2009!

The credit squeeze has inspired a new wave of security and continuity service offerings that take capital cost out of the IT equation. The drive towards cloud computing, with organisations investigating both internal and external clouds, represents as many challenges for security and continuity services as business opportunities.

Information Age’s Enterprise Security & Continuity 2009 conference, part of our Autumn Forum which takes place on October 22nd in London, will host insider presentations and debate from analysts, chief security officers, business continuity managers and consultants on the threats to organisations and the new service-centric delivery models.  Topics under discussion will include: 

•    Lost or exposed data

•    Security holes in packaged software

•    Malicious viruses

•    Hacking by professional criminals

•    Social engineering

•    Phishing scams

•    Power outages

•    Server failure

Click here to register for your free place at the event

Comments 

There are currently no comments on this article

People who read this also read...

Platform Computing - Category winner

Since 1992, Platform has established a reputation as an industry leader in High Performance Computing (HPC) management software, bringing the most powerful commercial HPC solutions to leading global enterprises.

Most of the web's biggest sites are unsafe

Web security vendor finds 61 of the 100 most popular websites to be hosting malware or redirecting to malicious sites

Away from prying eyes

Businesses and government struggle to handle private data safely. Now two new industry initiatives offer some sorely needed guidance

The balancing act

Traditional information security management is failing to keep businesses out of the headlines. But a risk management approach can help to balance security investment against the chances of disaster

ICO calls for data protection law update

“Data protection must become a top-level corporate governance issue,” says Information Commissioner’s Office

 

White Papers

Read article

'Think Lean' When Developing Management System Documentation

Learn how to efficiently and effectively implement a document management system for your organization.

Read article

11 Hiring Trends for 2011

In this document, you'll get the insider info you need to give potential employers what they want and beat your competition in 2011. You'll learn about the most valuable certifications and the game-changing skills that can lead to more job security and stability.

Read article

12 Hiring Manager Secrets to Getting the IT Job You Want

Learn how you can make yourself a more attractive candidate now with PrepLogic's free 12 Hiring Manager Secrets to Getting the Job You Want.

More

More News

Foxconn B2B sites shut down after hackers leak logins

Three client service portals from the world's largest electronics manufacturer have been shut down after hackers release login data

Anonymous claims Symantec source code leak

Hackivisit group leaks what it says is the source coude for Symantec's remote desktop access software pcAnywhere amid allegtions of extortion

Met police confirms FBI conference call hack

The Metropolitan Police has confirmed that a recording posted by Anonymous relates to a conference call between Met officers and FBI agents

Cyber strategy 'too high level' for public, say MPs

The government must do more to protect UK citizens from cybercrime and address every day concerns, a Commons select committee has warned

More News »

Related articles

The cloud shift

Cloud computing is shifting the IT department’s role from handling technology to managing contracts and suppliers, Information Age’s latest roundtable debate heard

What are IT leaders thinking?

Information Age's 2012 reader survey reveals the UK IT management profession's priorities for the coming year

Q&A: US Dept of Defense

How the world’s largest government department is deploying semantic technology

The wisdom of clouds

A report from Information Age's Cloud Security 2011 conference, including three cloud security case studies

Advertisement
div class="banner">