The most popular and comprehensive Open Source ECM platform
Sometimes we’re our own worst enemy. Two-thirds of database breaches were found to be the result of either human error or perpetrated by a privileged user with inside access to the system. That’s one of the results of a database security study made by Joe McKendrick and Unisphere Research on behalf of Sybase and Application Security, Inc.
The report is the result of a survey of 216 companies which use the Sybase database. It notes an interesting false sense of security held by many of the companies. On the one hand, 73 percent say that their database data is currently securely protected and 56 percent say that any sort of data breach in the next 12 months would be extremely unlikely, with only 2 percent saying that some sort of breach in their system is ‘inevitable’. 18 percent of organization report some sort of data breach occurring within the last 12 months.
The breakdown of root causes of security incidents is as follows:
- 46 percent Human Error
- 20 percent Insider attack
- 17 percent External attack
- 17 percent Lost or misplaced storage media
- 9 percent Malicious code or virus
- 9 percent Abuse of IT privileges by employees
- 9 percent Abuse by partners or suppliers
Based on this information, when asked what security areas that companies most worry about, 77 percent worry about human error and 48 percent worry about the misuse of insider privilege.