The State of Server Security: Malware Up, Confidence Down

By | March 29, 2013

Posted in: Network Security Trends

The conundrum is obvious.

While incidents of advanced attacks targeting servers has risen, confidence in being able to identify and stop these attacks has dropped, according to a recent report.

25 percent of respondents in Bit9's annual Server Security Survey said their servers were attacked in 2012, up 8 percent over the previous year. Despite the increase, 20 percent reported they were NOT confident in their ability to stop advanced malware attacks. That figure represents a 10 percent bump year-over-year, according to the report.

"These results highlight the need for greater control in identifying and stopping advanced attacks on valuable server resources—before they execute—while decreasing the security-related administrative workloads of IT and security professionals,” said Brian Hazzard, vice president of product management for Bit9 in a press release. “The key to securing enterprise servers—both physical and virtual—is to allow only trusted software to execute and prevent all other files from running. That’s how the Bit9 Platform protects our customers’ servers and endpoints against targeted attacks, zero-day threats and all other types of malware.”

Bit9 polled 966 IT and security professionals worldwide, finding that among the majority of respondents (52 percent), targeted malware attacks topped the list of server security concerns, up 15 percent from the prior year.

And when it comes down to fighting these attacks, the concerns of some of these IT pros are of a more practical bent, with 12 percent of the survey group saying “too much administrative effort” in employing their traditional security solution was a bigger concern than the actual attacks.

In a blog post, Ilana Goddess, product marketing manager for Bit9, said that this administrative issue is really not all that surprising.

"This also comes as no surprise since more than 90 percent of respondents said that they are using antivirus software, which is often associated with significant performance issues. Testing signature updates delays deployment, impacts effectiveness and compliance, and makes additional work for the server team," she wrote.

A complete copy of the report can be downloaded HERE.

You May Also Be Interested In: