Executives with an internet porn habit are not only infecting their systems with malware, but are keeping reporting of the viruses secret to hide their red-faces.
According to a recent study from ThreatTrack Security, nearly six in 10 malware analysts at US enterprises have investigated or addressed a data breach that was never disclosed by their company.
In a secret study, the companies admitted that more than 40 percent of their malware security breaches were caused by executives searching for porn and visiting dodgy sites.
Size apparently matters. The bigger the company the less likely it was to report a breach, suggesting that executives were covering up their porn searching and had the power to supress the news.
The independent blind survey of 200 security professionals dealing with malware analysis within U.S. enterprises was conducted by Opinion Matters on behalf of ThreatTrack Security in October 2013.
ThreatTrack CEO Julian Waits was not surprised that the breaches were occurring. Malware is more sophisticated, and US enterprises are constantly targeted for cyber espionage campaigns from overseas competitors and foreign governments.
“This study reveals that malware analysts are acutely aware of the threats they face, and while many of them report progress in their ability to combat cyber-attacks, they also point out deficiencies in resources and tools,” he said.
The report suggests that malware analysts often spend their time “tackling easily avoidable malware infections originating at the highest levels of their organization.”
More than 40 percent of malware breaches were caused by a senior executive visiting a pornographic website. More than half of them had clicked on a malicious link in a phishing email and just under half had allowed a family member to use a company-owned device. A third of them had downloaded a malicious mobile app.
More than half of all malware analysts said it typically takes them more than two hours to analyse a new malware sample. Conversely, only four percent said they are capable of analysing a new malware sample in less than an hour, while 35 percent said they did not have access to an automated malware analysis software to do it.
The US has apparently beaten China as the most evil government hacker. More than 37 percent of respondents said the US is the country most adept at conducting cyber espionage. China was a close second at 33 percent.