Hewlett-Packard Report Shows Sorry State of Cyber Security

At least one organization can take heart at reading this year’s HP Security Research Cyber Risk Report, and that’s the National Security Agency. The vast, and growing, vulnerability in the software that companies deploy in their businesses, highlighted by today’s study, makes the spy agency’s job a lot easier. For the rest of us, it’s depressing.

Hewlett-Packard (HPQ), now a big player in cybersecurity services, has put out the annual assessment since 2009. The company runs one of the biggest vulnerability reward programs, paying researchers who disclose bugs in commercial software so that they can be fixed.

The total number of new vulnerabilities reported through November 2013 was 4,704, a 6 percent decline from a year earlier, according to HP. Reporting of the most severe vulnerabilities fell 9 percent. While that might seem like a good thing, it’s probably not, says Jacob West, chief technology officer for enterprise security products at HP. The optimistic view would be that investments in security are paying off, but West doesn’t buy it.

via Hewlett-Packard Report Shows Sorry State of Cyber Security – Businessweek.

———————————————-

Journal of Law & Cyber Warfare | www.jlcw.org The Journal of Law & Cyber Warfare provides a public peer-reviewed law publication to foster open discussion and education of technology, government and legal stakeholder in relation to the complex issue of cyber warfare.  Journal of Law & Cyber Warfare accepts articles written by military, technology, judges, government officials, academic and legal practitioners.  The Journal of Law & Cyber Warfare provides a public peer-reviewed law publication to foster open discussion and education of technology, government and legal stakeholder in relation to the complex issue of cyber warfare.  Journal of Law & Cyber Warfare accepts articles written by military, technology, judges, government officials, academic and legal practitioners. The Journal of Law & Cyber Warfare is honored by the world class caliber editorial board that is involved with the Journal. Thought leaders from forensics, law, warfare, and cyber security are on the Board. The Journal is always looking for interested thought leaders who believe they can contribute in a meaningful fashion to the development of cyber warfare scholarship.