The Unknown Threat in Sweden – KPMG Study

An interesting article which shows an alarming figure of "93% of Organizations were breached"
 
 
August 27, 2014 | By Fredrik Myrelid
 
The study shows that all the organisations were exposed to infection attempts, where malware had successfully passed through the organisations’ perimeter defence and had reached internal hosts. 93% of the organisations were actually found to be infected as we observed communication attempts towards callback servers and in 79% we were able to observe attempts to exfiltrate data from the organisations.
According to the study:

• An average organization generates 43 security incidents a day, with an average of 2 new infected hosts a day
• 93% of Organizations were breached
• 79% were exfiltrating data
• 49% of the detected malware was unknown
• 52% of the identified malware was unknown to anti-virus vendors
• 83% of the callbacks were related to data exfiltration
• Call back destinations according to verticals:[list]
• Government exfilterates to USA, France and Asia
• Manufacturing organizations to USA and China
• Industrial companies to US, Ukraine, Russia, Germany and UK
• Retail towards USA

[/list]Despite best efforts to maintain a tight security posture across networks and systems; cyber attacks do, and more importantly will occur. Security is a process and not a solution, and as such safeguarding IT networks and sensitive data from electronic attack and exposure, both from the internet and internally at an organisation is a constant effort.
 
Full Article