Kaspersky Lab, a leading developer of Internet threat management solutions that protect against all forms of malicious software including viruses, spyware, hackers and spam, is recommending that human vulnerabilities need to be patched, to prevent them from being the weakest link in an organisations IT security chain.
This recommendation is made in a new paper authored by David Emm, Senior Regional Researcher, UK, Global Research & Analysis Team at Kaspersky Lab. The article considers the influence the human factor has on information security.
Cybercriminals are known to employ methods that exploit vulnerabilities in the human psyche, to spread their programs and collect data. For example they are increasingly targeting social networking sites such as Facebook, MySpace, LinkedIn, Twitter and others, due to the ever-increasing number of people that use them.
Emm explains that humans are typically the weakest link in any security system and that educating the user in security best practice needs to be at the a part of any effective IT strategy. No corporate security policy can be considered effective if it fails to address the human factor. In addition to securing digital resources, IT professionals need to find efficient methods for 'patching' human resources too.
"A security strategy is far more likely to be effective if staff understand and support it. Furthermore, it is important not to see security information and training as just an IT issue. Rather it should be seen within an overall HR context," explains Emm. "Employees need to be told, in simple, straightforward language, the nature of the threat. They need to understand what protection measures the organisation has deployed, and why, and how these may affect them in carrying out their duties. It also ensures that staff – who are increasingly working from home these days – are not exposing business resources to unnecessary risks."
The full version of the article entitled ‘Patching human vulnerabilities' is available at www.viruslist.com/en. This material can be reproduced provided that the author, company name and original source are cited. Reproduction of this material in re-written form requires the express consent of the Kaspersky Lab PR department.
To find out more about computer threats visit: http://www.kaspersky.co.uk/threats
To read the latest security news please visit: http://threatpost.com