‘Inadvertent incidents’ cause most IT lapses

Posted by PM | on Wed, 26/08/2009 - 14:34  2623  4 comments

IDC identifies the biggest threat to IT systems and it’s not the faceless shadow of hackers. Jon Wilcox reports.

The greatest threat to a company’s IT systems comes from internal incidents, and not malicious external forces, according to a new report from analysts at IDC.  IDC found that just over half of the 400 respondent organisations believed IT violations were accidental, though 19% believed such occurrences were deliberate.

Continued...

» Register now

The full article is available to registered AccountingWEB members only. To read the rest of this article you’ll need to login or register.

Registration is FREE and allows you to view all content, ask questions, comment and much more.

Tags
security
Technology
More like this
Comments

"Inadvertant" is completely the wrong word...

lpwcs | Wed, 02/09/2009 - 13:11 | Permalink

In my expereince, almost every "inadvertant" incident is traceable to a badly-managed or poorly constructed and untested change to a working system. Accidents don't happen in IT, they are caused.

'Inadvertant' the wrong word?

Anonymous | Wed, 02/09/2009 - 14:03 | Permalink

No, actually it's only wrong by one letter.

Seriously though, I agree with the view that systems need to be designed so that numpties like me CAN'T b*lls them up. But surely you can never stop every possible mistake, such as the famous Mizuho error.

(On 8 December 2005 an employee of Tokyo stock traders Mizuho mistyped an order to sell 1 share for 610,000 yen as an order to sell 610,000 shares for 1 yen. Neither Mizuho nor the TSE system detected or rectified the error, and arguments continue over liability for the net loss of US$ 300 million plus)

Jason Cobine's picture

Data and insurance

Jason Cobine | Thu, 03/09/2009 - 08:53 | Permalink

Hi,

Accidents and outages do happen and not every risk can be forseen or avoided. Not all insurance policies cover reinstatement of data and some of them will not provide cover unless the data has been backed up every 24 hours and you can prove it. Get the back up regime right, test the back up works and then check your insurance policy exclusions so you know what areas are not covered. The you can pay particular attention to them.

http://www.cobinecarmelson.com/what-is-cyber-insurance/

Take care,

 

Jason

Data Recovery

bscunliffe | Mon, 19/10/2009 - 10:34 | Permalink

Even the best systems and back-up routines can fail, even sophisticated RAID systems. My client abc Data Recovery recently pulled BAE Syatems out of a hole when a 15 disc RAID server went down, great systems and a full RAID back up but still failed. Human intervention can be managed but hardware failure is more widespread than the manufacturers would like us to think.

Related links
5% discount on Sage Instant Accounts