Computer viruses a growing concern for UK companies
Infection by viruses was the biggest single cause of the worst security incidents for UK companies in the past two years, accounting for roughly half of them, a new survey shows. Infection by viruses was the biggest single cause of the worst security incidents for UK companies in the past two years, accounting for roughly half of them, a new survey shows.
Two-fifths of these were described as having a serious impact on the business, according to findings from the 2006 Department of Trade and Industry’s biennial Information Security Breaches Survey, conducted by a consortium led by PricewaterhouseCoopers.
The research showed that virus infections were more likely to have caused service interruption than other incidents.
Usually the disruption was minor but roughly a quarter of companies questioned who reported a virus as their worst incident had major disruption, with important services such as email down for more than a day.
The majority of UK businesses surveyed have a broadband link to the Internet (88 per cent) and as a result, the threat from malicious software such as viruses has never been greater.
UK businesses have responded and now almost every company uses anti-virus software. Despite the increased threat, fewer companies had viruses than in the last two surveys. Infection rates have dropped by roughly a third since two years ago.
While the number of companies infected has fallen since 2004, the average number of infections suffered by those affected has risen to roughly one a day. Several businesses reported hundreds of infections a day.
A quarter of UK businesses are not protecting themselves against the threat caused by spyware. As a result roughly one in seven of the worst incidents involving malicious software related to spyware that can download onto a computer when the user visits an unscrupulous website.
Two years ago, a small number of viruses dominated, for example Netsky and Bagle/Beagle. In contrast over the last year, no single virus has caused widespread damage.
Instead the nature of viruses – and the motivation of their writers – has changed.
Some malicious viruses, known as ‘bots’, take over machines turning them into ‘botnets’ used for cyber crime and cleaning up the problems can take weeks of effort.
Virus infections tended to take more effort to resolve than other incidents sometimes taking over 50 days’ work to fix.
Chris Potter, the partner from PwC leading the survey, said: “Today’s viruses have become more insidious. These programmes lie hidden on infected machines, gather information and target their strikes at valuable data.
“Cyber-criminals now use virus infections to get in under the radar of businesses and steal confidential data.
“The damage that viruses can cause extends beyond systems and ultimately can affect a company’s customers, business relationships and reputation in the marketplace. The threat has never been greater.”