UK SMB spending on managed security reached $42 mln in 2007

Small and medium businesses (SMBs, or companies with up to 999 employees) in the United Kingdom spent $12 bln on IT services in 2007, up some 8% over 2006. Up to 29% of the over $40 bln in IT and telecom spending by UK SMBs went towards IT services. In terms of spending, software development and integration, day-to-day IT management and process management are dominant categories for SMBs in the UK. As demand for third-party services continues to broaden, expenditures for services in other IT categories are increasing. Total SMB spending for managed security services reached $42 mln in 2007 and storage services climbed to a substantial $388 mln, up some 20% over in 2007.

IM attacks: 45% on MSN Messenger, 20% on Yahoo! IM, 19% on AIM

faceTime says 19% of threats were reported on the AOL Instant Messenger network, 45% on MSN Messenger, 20% on Yahoo! Instant Messenger and 15% on all other IM networks including Jabber-based IM private networks. Attacks on these private networks have more than doubled in share since 2003, rising from seven% of all IM attacks to 15% in 2007. In 2007 researchers saw a shift in the non-IM vectors used to distribute viruses, malware and spyware. Most notable is the rise in IRC-distributed attacks: in 2006, IRC accounted for 58% of attacks, rising to 72% by year-end 2007.

$3.2 bln lost to phishing in 2007

Phishing attacks in the United States soared in 2007 as $3.2 bln was lost to these attacks, according to Gartner. 3.6 mln adults lost money in phishing attacks in the 12 months ending in August 2007, as compared with the 2.3 mln who did so the year before. Of consumers who received phishing e-mails in 2007, 3.3% say they lost money because of the attack, compared with 2.3% who lost money in 2006, and 2.9% who did so in 2005. The average dollar loss per incident declined to $886 from $1,244 lost on average in 2006 (with a median loss of $200 in 2007), but because there were more victims, $3.2 bln was lost to phishing in 2007, according to surveyed consumers. Some 1.6 mln adults recovered about 64% of their losses in 2007, up from the 54% that 1.5 mln adults recovered in 2006.

90% of security attacks can be avoided without increase in security spending

Financially motivated targeted attacks are becoming more prevalent and new vulnerabilities continue to be reported, but 90% of these attacks can be avoided without requiring any increase in security spending, according to Gartner. Gartner says that the average enterprise is spending more than 5% of the IT budget on security and close to 12%, if disaster recovery spending is included.

Remote household monitoring to grow at 25% a year

The number of households paying a remote access fee to control or monitor their automation or security system in North America will grow an average of 25% annually from 2007 through 2011, In-Stat says. 18.6% of US households subscribe to some kind of security system service.

CCTV surveillance market to grow 12.4%

The global CCTV market is anticipated to grow at a CAGR of 12.4% for the period spanning from 2005 to 2008. However, the global demand for conventional CCTV systems is showing downward trend with the escalating demand for IP-based CCTV surveillance. At country level, Japan remains the largest player in CCTV market and it is among the largest markets for biometric application in ATM. The RFID industry is expected to represent a CAGR of over 19% for the period from 2007 to 2016. The driving factors include various initiatives that worldwide countries are assuming in order to get benefits from RFID technology.

IT security spending by small businesses to reach $1.7 bln in 2007

Small and medium businesses (1-999 employees) are set to spend $1.7 bln on beefing up their security and storage solutions in 2007, up 16% over 2006. Small businesses (1-99 employees) will show a higher growth rate of 17%, followed by medium businesses (100-999 employees) at 14%. IT security spending has increased rapidly ? from 2005 to 2006, IT security spending grew 36% for SBs and 15% for MBs – the highest among IT and telecom categories.

60% of large European companies do not adequately use encryption

60% of large European businesses do not adequately secure data by using encryption. This is despite the fact that 13% of responding European organizations admitted a data breach of unauthorized confidential information leaving their organizations within the in 2006. Across Europe, more than a third, 36%, of those surveyed rated publicity as a particularly painful consequence of a data breach, while 26% added fines or lawsuits to their list of concerns. 59% not already using encryption stated that they did not perceive the business need to do so ? showing that there is still significant work to be done to educate businesses on the threats posed by data breaches and the solutions available to prevent them. Only in financial services do the majority of European organizations, some 59%, encrypt outbound email as a matter of course, Tumbleweed says.

Young salespeople the worst IT security offenders

Based on the insights of almost one thousand UK and US IT decisions makers, the worst culprits of security breaches are junior sales men and women between the ages of 26-35 years old, who are multi-taskers and tech savvy, using applications such as email, instant messenger, VoIP, and the web, MessageLabs reports. On the other hand, the angels of the workforce, those most knowledgeable on security matters, are the techies: middle management males between the ages of 26-35 years old who work within the technology function. More than 75% of all respondents in the US and UK don’t expect spam to ever cease being a problem. Almost a third of all small business respondents have been impacted by a malware or virus attack. Only 53% of small businesses have the right IT security procedures in place compared to 69% of enterprise companies. More than 40% of the companies surveyed did not provide security training to staff. Less than half of the organizations surveyed, 21% in the UK and 41% in the US, are confident that employees will not cause a security breach.

Security market up 7.2% in 2006

Annual security market growth declined to 7.2% in 2006, from over 30% in 2004 and 20% in 2005. Symantec and Trend Micro benefited from strong PC market growth. Growth is predicted to return to double figures in 2007. North America and EMEA remained the biggest regions in value terms, with the former accounting for almost 47% of the 7.1 bln euros global end-user spend on enterprise security hardware and software, according to Canalys.

$28.5 bln will be spent on homeland security in 2007-2011

$28.5 bln of homeland security products and services are forecasted to be procured from the HLS industry during 2007-2011 by the private sector. These markets are analyzed and segmented by industry sector (e.g. banking & finance, chemical & HAZMAT, energy, water) and products/services category procured (e.g. perimeter protection systems, cyber terror security, biometric systems). The cumulative $123 Billion US government HLS five year forecasted procurement schedule is segmented by the 20 HLS leading agencies, Millennium Research predicts.

77% of US consumers willing to change banks for better protection policy

77% are willing to change banks for better protection of their money. This represents a 50% increase in willingness to switch banks, as compared to a 2005 Unisys study on identity fraud and bank security issues. Certain banks and online retailers stand to lose a large portion of the $32 bln in online shopping this holiday season, revenue that is up 18% from 2005, according to JupiterResearch. Banks and retailers can expect consumer fears to continue, as 63% of survey respondents believe credit card fraud and ID theft will become an even bigger security threat in the future. This majority of consumers place much of the blame on the organizations and the government entities responsible for regulating them, claiming they are not doing enough to protect and secure their personal information. Despite this huge increase in consumers willing to consider taking action and switch banks for more security, only a minority of consumers will pay for protection. Only 10% were willing to pay for these services, compared to 40% of consumers who were willing to pay additional bank fees for greater security in a similar study Unisys conducted 2005.

40% of US consumers confident medical organizations can provide adequate security for healthcare records

98% of consumers believe that healthcare organizations have a responsibility to protect patient medical records however, only 40% of consumers feel confident that their healthcare providers are able to secure their medical records, EpicTide says. Only 51% of consumers think that healthcare providers ?know? when someone has accessed patient records. Only 30% of respondents believe hospitals are diligent about informing potential victims of suspected breaches and unauthorized access to patient records.