A third of businesses do not report information security crimes and system breaches.
Research about the attitudes towards e-crime was carried out among 285 firms by the organisers of this month’s Infosecurity Europe show. Infosecurity said many firms were concerned about reputational damage, among other factors.
A balance had to be made between a company’s responsibility to report crime in order to prevent and predict incidents in the wider business community, and the clear material loss from reputational damage, said Infosecurity.
"From my experience as a media lawyer, reporting crime to the police is a double-edged sword as invariably the press have found out about the incident within 24 hours of reporting it to the police, creating a real PR risk," said media lawyer Jonathan Coad from Swan Turton.
Tony Neate, managing director at government and industry internet safety organisation GetSafeOnline, said, “In order to be effective we need to know what the scale of the problem is, this can only be measured if we report incidents when they occur. How and who we report to is a matter for debate, whether it is the ISP, bank, or local police.”
He added, “Without collating the scale of the e-crime problem, we will never truly be aware of the cost to society at large and the measures that need to be put in place to fight it.”
Infosecurity Europe takes place at London’s Olympia 24-26 April 2007.
More details can be viewed at:
Comment on this article: firstname.lastname@example.org