- QAnon believers link small-town arrest to deep state conspiracy without evidence Today 1:58 PM
- Instagram photos showing prison conditions spark massive protest Today 1:33 PM
- ‘Gay rat wedding’ headline sparks amazing new meme Today 1:03 PM
- ‘I read a gossip piece’ meme mocks Moby’s Instagram post Today 12:39 PM
- Rotten Tomatoes wants to see your ticket stub to leave a verified review Today 11:46 AM
- ‘Sonic the Hedgehog’ movie delayed to 2020 to fix his look Today 11:39 AM
- ‘Swamp Thing’ gets off to a promising start, but can it tell a convincing love story? Today 11:34 AM
- ‘Falling on deaf ears’: ‘Queer Eye’ star sparks conversation about ableist idioms Today 11:15 AM
- Parents are spending thousands on YouTube camps that teach kids how to be famous Today 10:43 AM
- In season 2 of ‘She’s Gotta Have It,’ Spike Lee remains unapologetically himself Today 10:36 AM
- Trump selling Pride shirts is a grotesque insult to the LGBTQ community Today 10:27 AM
- Logan Paul is being mocked for pulling out of slapping competition Today 9:57 AM
- 47 House Democrats sign criticized net neutrality working group letter Today 9:17 AM
- How ‘and I oop’ became the perfect reaction meme for shocking developments Today 8:47 AM
- Netflix’s ‘The Perfection’ is a totally unhinged, WTF horror film Today 8:00 AM
U.S. companies are more secure than Chinese, Brazilian firms, but botnets remain a problem
There are lessons in this report that every company should heed.
U.S. businesses are some of the most secure in the world, but they still struggle to combat botnets and they leave networks open to common security vulnerabilities, according to security firm BitSight’s survey of corporate cybersecurity practices in six countries.
BitSight surveyed 250 companies in each country, and the United States ranked third, behind the United Kingdom and Germany but ahead of Singapore, China, and Brazil, in overall security, based on 250 businesses’ median security score.
The American private sector also scored well in terms of its openness to the Heartbleed SSL vulnerability; only 8 percent of surveyed U.S. companies ran equipment that was vulnerable to Heartbleed, while more than 14 percent of Brazilian companies were exposed.
When it came to two other major security flaws, U.S. companies fared much worse. America topped the list for exposure to an attack knonw as POODLE and placed second for one known as FREAK. Although every country was widely vulnerable to FREAK attacks, a shocking 82 percent of American businesses were exposed.
Botnets—networks of computers infected with malware that lets a remote attacker control them en masse—are also a major problem in the United States. More than a third of U.S. companies earned a botnet prevention grade of B or lower—the second highest percentage of poor grades, trailing only Brazil.
According to BitSight’s team, which audited more than six thousand companies in 2015, “companies with a BitSight botnet grade of ‘B’ or lower were more than twice as likely to experience a publicly disclosed breach.”
BitSight collected data for its new survey between May 1, 2015, and May 1, 2016.
Eric Geller is a politics reporter who focuses on cybersecurity, surveillance, encryption, and privacy. A former staff writer at the Daily Dot, Geller joined Politico in June 2016, where he's focused on policymaking at the White House, the Justice Department, the State Department, and the Commerce Department.