Firms can't deter internal attacks

An annual survey by Deloitte Touche Tohmatsu found that most corporate security officials do not feel confident they can protect their organizations from internal cyberattacks. While human error is by far the leading cause of information system failures, there is concern that the recession is putting information at great risk.

"The economic situation has heightened the concern with a number of institutions, and the threats and the vulnerabilities and the risks have increased," Mark Steinhoff, principal in Deloitte's security and privacy services practice, told SCMagazineUS.com. "You have tighter budgets and greater concerns over internal breaches."

Deloitte said 36 percent of respondents expressed concern about insiders' misconduct, compared to only 13 percent who were concerned about external threats.

In addition, 58 percent of respondents said they do not feel confident they can prevent internal attacks. The survey included participants across 32 countries from the top 100 global financial institutions and banks as well as the top 50 global insurance companies.

For more on this troubling problem:
- see this SCMagazineUS.com article