ESET: More than half of Uzbek companies do not have a budget for information security
Tashkent, Uzbekistan (UzDaily.com) -- The international antivirus company ESET conducted an analysis of the state of information security in Uzbek companies by interviewing dozens of IT directors and system administrators. The purpose of the study is to assess the level of protection of the most important information assets from current threats and the degree of readiness of companies to repel cyber attacks.
According to the survey, it became known that 55% of the companies in Uzbekistan faced internal cyber threats and 72% - with external ones.
The most common cyber threat, as in most other CIS countries, was spam - exactly half of the respondents noted it in a multivariate survey (50%); in second place is malware (48%).
An impressive 18% of respondents reported that their companies suffered from accidental information leaks and 10% from intentional ones. Also, 18% drew attention to security problems on the side of the provider / service provider and 15% reported that they faced the loss of corporate mobile devices by employees.
The most important entrepreneurs in Uzbekistan consider financial information: 75% of companies noted that it needs special protection against cyber threats. 48% provide information on operating activities, 45% - information about partners and customers, 25% - personal data of employees.
Uzbek companies resort to various measures to protect information. 98% use antiviruses, 43% control the use and updating of installed programs. 28% of companies have financial security systems in place.
When assessing the state of information security of companies in Uzbekistan, it turned out that 18% of respondents consider it unsatisfactory. This may be due to a lack of budget for the construction of an effective information protection system, as reported by 53% of respondents.
To improve the situation, ESET recommends the use of integrated information security systems in the enterprise. As a preventive measure, it is advisable to use DLP technologies that allow you to identify potentially dangerous actions of employees before they lead to the loss of time and money and protect companies from intentional and accidental leaks.
In addition, care should be taken to protect mail servers from all types of malware and message filtering. This is due to the relevance of cyber threats such as phishing and the spread of malware through e-mail.
Finally, it is necessary to organize training for employees in working with software designed to ensure information security in the company.
The study involved 242 respondents from Kazakhstan, Uzbekistan, Azerbaijan, Armenia and Belarus - IT directors and system administrators, as well as business owners. The survey took place in September 2019.