Software Vulnerabilities Create Internal Data Security Problems for 39 Percent of Companies

Woburn, MA – November 26, 2013 – According to the Global Corporate IT Security Risks 2013 survey, conducted by Kaspersky Lab and B2B International, vulnerabilities in software regularly used by employees at work are the leading cause of internal cyber-security incidents in businesses.

Approximately 39 percent of survey participants said that over the past 12 months, vulnerabilities in legitimate software programs have been a source of corporate computer infections and critical data leakage. Of the companies that reported security problems due to software vulnerabilities, 10 percent reported leakages of critical corporate data. Overall, 25 percent of survey participants suffered data leakages involving company business due to an internal security issue.

While the number of incidents involving software vulnerabilities has fallen substantially since 2011 – from 47 percent to 39 percent – it is still high. In total, approximately 85 percent of companies have reported internal IT security incidents, with software vulnerabilities being the most common cause.

The highest percentage of incidents was noted in Russia, where 51 percent of survey respondents were affected. 43 percent of companies based in Asia-Pacific encountered these issues, as did 38 percent of companies in North America. Japanese companies had the lowest frequency of vulnerability-related security problems at just 29 percent.

Protect your company againstsoftware vulnerabilities
Without extra protection, company IT infrastructures will remain vulnerable until software developers release updates to patch these vulnerabilities. How can companies ensure their data is safe?

Using a security solution with advanced technologies that have the capability to detect and intercept attacks launched via software vulnerabilities is critical for any company. An advanced security solution will also help prioritize the update of software programs once vulnerabilities have been detected.

This type of technology, with top-of-the-line protection against malware and other cyber threats, is built into Kaspersky Endpoint Security for Business, the professional security platform from Kaspersky Lab. The Automatic Exploit Prevention tool detects and blocks attempts to exploit vulnerabilities found in commonly used applications, while the Systems Management component effectively manages company workstations, and allows company IT professionals to centrally install security updates for the applications running on company computers.

About Kaspersky Lab
Kaspersky Lab is the world’s largest privately held vendor of endpoint protection solutions. The company is ranked among the world’s top four vendors of security solutions for endpoint users*. Throughout its more than 15-year history Kaspersky Lab has remained an innovator in IT security and provides effective digital security solutions for large enterprises, SMBs and consumers. Kaspersky Lab, with its holding company registered in the United Kingdom, currently operates in almost 200 countries and territories across the globe, providing protection for over 300 million users worldwide. Learn more at www.kaspersky.com.

Securelist | Information about Viruses, Hackers and Spam
Follow @Securelist on Twitter

Threatpost | The First Stop for Security News
Follow @Threatpost on Twitter

Media Contact
Greg Sabey
781.503.2654
greg.sabey@kaspersky.com

*The company was rated fourth in the IDC rating Worldwide Endpoint Security Revenue by Vendor, 2011. The rating was published in the IDC report "Worldwide Endpoint Security 2012–2016 Forecast and 2011 Vendor Shares (IDC #235930, July 2012). The report ranked software vendors according to earnings from sales of endpoint security solutions in 2011.