- Barbra Streisand gets canceled over remarks about Michael Jackson’s alleged victims 3 Years Ago
- Report: Florida man raped Texas teen after posing as Instagram celeb Today 12:14 PM
- Lori Loughlin’s daughters, Olivia and Isabella, could be banned from USC forever Today 11:46 AM
- ‘Starfish’ is a heartbreaking tale of BFFs, grief, and apocalyptic alien invasions Today 10:35 AM
- How to stream UFC Fight Night 148 for free Today 10:00 AM
- The kids are making scantron memes instead of studying Today 9:29 AM
- Every installment of Hulu’s ‘Into the Dark,’ ranked Today 6:00 AM
- The internet is mocking Robert Mueller’s report deadline Friday 7:53 PM
- Instagram blocks some anti-vax hashtags—but still has far to go Friday 6:20 PM
- Study: Netflix released more originals than licensed titles last year Friday 2:26 PM
- Laura Ingraham, Dinesh D’Souza slam journalist for having a job Friday 1:40 PM
- Netflix is testing a cheap-as-hell mobile-only plan Friday 1:08 PM
- Astrology app Co-Star’s bizarre push notifications are now a meme Friday 12:18 PM
- ‘The Dirt’ offers a sanitized history of Mötley Crüe—but why? Friday 11:42 AM
- ‘The Dirt’ director Jeff Tremaine on Mötley Crüe’s long, difficult road to Netflix Friday 11:30 AM
U.S. companies are more secure than Chinese, Brazilian firms, but botnets remain a problem
There are lessons in this report that every company should heed.
U.S. businesses are some of the most secure in the world, but they still struggle to combat botnets and they leave networks open to common security vulnerabilities, according to security firm BitSight’s survey of corporate cybersecurity practices in six countries.
BitSight surveyed 250 companies in each country, and the United States ranked third, behind the United Kingdom and Germany but ahead of Singapore, China, and Brazil, in overall security, based on 250 businesses’ median security score.
The American private sector also scored well in terms of its openness to the Heartbleed SSL vulnerability; only 8 percent of surveyed U.S. companies ran equipment that was vulnerable to Heartbleed, while more than 14 percent of Brazilian companies were exposed.
When it came to two other major security flaws, U.S. companies fared much worse. America topped the list for exposure to an attack knonw as POODLE and placed second for one known as FREAK. Although every country was widely vulnerable to FREAK attacks, a shocking 82 percent of American businesses were exposed.
Botnets—networks of computers infected with malware that lets a remote attacker control them en masse—are also a major problem in the United States. More than a third of U.S. companies earned a botnet prevention grade of B or lower—the second highest percentage of poor grades, trailing only Brazil.
According to BitSight’s team, which audited more than six thousand companies in 2015, “companies with a BitSight botnet grade of ‘B’ or lower were more than twice as likely to experience a publicly disclosed breach.”
BitSight collected data for its new survey between May 1, 2015, and May 1, 2016.
Eric Geller is a politics reporter who focuses on cybersecurity, surveillance, encryption, and privacy. A former staff writer at the Daily Dot, Geller joined Politico in June 2016, where he's focused on policymaking at the White House, the Justice Department, the State Department, and the Commerce Department.