An industry study conducted by Hewlett-Packard found that the internal security threats felt by “many organizations” are not being taken “as seriously as they should“, according to a recent article published on the EWeek website. The article indicates that according to HP‘s new “State of the Network Security Survey” a large financial investment towards security does not guarantee that “an enterprise is actually more secure.” According to the Hewlett Packard survey, approximately 70% of all network attacks originate from systems that were infected with “some form of malware“, the article states.
Jennifer Ellard, Director of Network Security Product Marketing for Hewlett Packard‘s Enterprise Security Products was quoted in the article saying, “This means that corporate networks are already infected with malware in many cases.” She said in the article that even though many organizations are “already infected“, they spend time and invest in resources trying to “prevent intrusion.” The report added that according to Ellard, a need exists to “help organizations not only block intrusion” but remedy the infections. This will not only “increase their security posture” but “better optimize network bandwidth“, according to the article.
The survey found, according to Ellard’s comments stated in the article, that 71 percent of those who responded to the survey said “they are very concerned with external threats“, but only 46 percent of surveyed showed “strong concern for internal threats.” Many of the survey results “validated concerns that HP had been hearing from its customers” according to the report, but they found some of the comments “surprising.” Ellard continued in the article to say, “It was interesting to see that companies who spend more on network security see more problems than those who spend less.” She clarified in the report that the study shows most importantly that enterprises must make sure they are “spending network security budgets on the right things.” Ellard said, “A layered approach to security is very important because hackers are getting savvier and it’s inevitable that some threats will penetrate the network.”