35 Percent of Companies Can't Detect a Data Breach Within 48 Hours

Share it on Twitter  
Share it on Facebook  
Share it on Linked in  

According to the results of a recent survey of 102 financial organizations and 151 retail organizations in the U.K., 35 percent of respondents said it would take more than two days to detect a breach of their systems.

The survey, conducted by Atomic Research and sponsored by Tripwire, also found that 24 percent of respondents have already suffered a data breach that exposed personally identifiable information (PII), and 36 percent of respondents said they don't have confidence in their security incident response plan.

Four percent of respondents said they're not confident at all that their security controls can detect malicious applications, and fully 51 percent said they're only somewhat confident.

Sixty percent of respondents said the Target breach had increased the level of attention executives now give security in their organization.

"It is great that recent breaches have increased cybersecurity awareness and internal dialogue," Tripwire CTO Dwayne Melancon said in a statement. "However, the improved internal communication may be biased by a false sense of security. For example, 95 percent of respondents said they would be able to detect a breach on critical systems within a week. In reality, nearly all of the recent publicly disclosed breaches have gone on for months without detection."