Here's an article I thought would be intresting for everyone...

Over 95 Percent of Systems can be Hacked

--------------------------------------------------------------------------------
Date posted in ITsecurity.com: 24 July, 2002
TesCom Highlights Lack of IT Security

Testing specialist, TesCom has today highlighted the almost total failure of companies to secure IT systems properly. TesCom, which offers a wide range of security testing services to customers throughout the world, has found that over 95 percent of all the systems it tests can be hacked one way or another.

“These findings are very concerning,” said Roy Harari, international marketing manager, TesCom information security division. “Especially considering the fact that any company coming to us and asking us to test their systems is demonstrating a significant level of awareness of security risks. If more than 95 percent of these companies can be hacked, there is no telling the risks faced by organisations that don’t have the commitment to security that our customers have.”

TesCom’s security testing division was launched in the UK early in 2001 and is expanding rapidly, to keep pace with its other security divisions around the world (over 150 security experts in total), matching the growing industry awareness of security risks. According to the DTI Information Security Breaches Survey 2002, 21 percent of UK businesses with web sites have commissioned security testing using outsourced suppliers, rising to 46 percent of companies with large transactional web sites.

TesCom’s security testing services include both ‘black box’ and ‘white box’ testing services; security code review; security guidance during development; applicative security testing; security functionality reviews; periodical intrusion testing; and more. ‘Black box’ and ‘white box’ testing services replicate hacking attempts both externally and internally to an organisation. This is especially relevant considering that a 2001 survey indicated that 76 percent of organisations consider disgruntled employees a likely source of attack. (Computer Security Issues & Trends 2001, CSI FBI)

About TesCom Ltd
TesCom mitigates business risk and reduces time to market by delivering independent, tailored software testing and quality improvement services. TesCom is the largest specialist global provider of testing services with a flexible service offering, based on best practice techniques and an in-depth market understanding of its clients’ business sectors. TesCom’s goal is to promote and deliver effective testing to make IT-based business services and applications more user-focused, responsive and robust to meet ever-increasing performance demands. To find out more about TesCom, visit www.tescom-intl.com.