- Man asks woman to stop speaking Spanish on a plane—and bystanders start speaking Spanish 3 Years Ago
- Schumer calls on FBI, FTC to investigate FaceApp 3 Years Ago
- Netflix loses subscribers—but hopes some tentpole shows can save it Today 12:10 PM
- Man utterly roasted for saying woman can’t ask for equality in revealing clothing Today 12:07 PM
- Instagram struggles to remove photos of Bianca Devins’ dead body Today 11:14 AM
- ‘Storm Area 51’ creator says its gotten so big he’s worried about the FBI Today 10:49 AM
- Everyone loves Q baby, the baby who apparently supports QAnon Today 9:53 AM
- Thread about ‘depression meals’ is inspiring lots of relatable answers Today 9:36 AM
- How long is ‘Avengers: Infinity War’? Today 9:30 AM
- Rand Paul ripped for halting 9/11 Victim Fund re-authorization bill Today 9:18 AM
- Here’s what’s coming and going on Hulu in August 2019 Today 7:00 AM
- ‘Game of Thrones’ creators drop out of Comic-Con at last minute Today 6:38 AM
- Inside Britt McHenry’s war on women Today 6:30 AM
- The glorious highs and unexpected quirks of 4K streaming Today 6:00 AM
- Southwest Airlines passengers receive free Nintendo Switch consoles and Mario Maker 2 Wednesday 9:10 PM
U.S. companies are more secure than Chinese, Brazilian firms, but botnets remain a problem
There are lessons in this report that every company should heed.
U.S. businesses are some of the most secure in the world, but they still struggle to combat botnets and they leave networks open to common security vulnerabilities, according to security firm BitSight’s survey of corporate cybersecurity practices in six countries.
BitSight surveyed 250 companies in each country, and the United States ranked third, behind the United Kingdom and Germany but ahead of Singapore, China, and Brazil, in overall security, based on 250 businesses’ median security score.
The American private sector also scored well in terms of its openness to the Heartbleed SSL vulnerability; only 8 percent of surveyed U.S. companies ran equipment that was vulnerable to Heartbleed, while more than 14 percent of Brazilian companies were exposed.
When it came to two other major security flaws, U.S. companies fared much worse. America topped the list for exposure to an attack knonw as POODLE and placed second for one known as FREAK. Although every country was widely vulnerable to FREAK attacks, a shocking 82 percent of American businesses were exposed.
Botnets—networks of computers infected with malware that lets a remote attacker control them en masse—are also a major problem in the United States. More than a third of U.S. companies earned a botnet prevention grade of B or lower—the second highest percentage of poor grades, trailing only Brazil.
According to BitSight’s team, which audited more than six thousand companies in 2015, “companies with a BitSight botnet grade of ‘B’ or lower were more than twice as likely to experience a publicly disclosed breach.”
BitSight collected data for its new survey between May 1, 2015, and May 1, 2016.
Eric Geller is a politics reporter who focuses on cybersecurity, surveillance, encryption, and privacy. A former staff writer at the Daily Dot, Geller joined Politico in June 2016, where he's focused on policymaking at the White House, the Justice Department, the State Department, and the Commerce Department.