Stamford, Conn. (Sept. 12, 2003) -- Technology industry analysts The Gartner Group project that through 2005, 20 percent of enterprises will experience a "serious Internet security incident" that goes beyond a virus.
"While the majority of enterprises will not face such an attack, companies must still take the proper precautions," Gartner says. "Being a victim of one of these security incidents could be much more costly for enterprises if they don't protect themselves. "
Gartner lists the following top information security vulnerabilities:
• Fundamentally insecure commercial software.
• An inadequate patch update model.
• "Misguided" users who believe crime happens to someone else.
The company further says, "While companies try to address those security issues, a number of new technologies will add to their challenges." It notes that Web services will produce discontinuities in new application security, unsecured wireless local area networks are a point of potential failure for enterprise networks, and that instant messaging can have "worrisome holes."
-- John M. Covaleski