Main News Desk

Micro Focus Study Reveals Sustained Refusal to Secure Data Despite Constant Breaches

* Over three quarters (79%) of organizations have experienced at least one data breach in the last 12 months * 79% use live production data in application development and testing * Over two thirds (70%) do not have the measures in place to mask this live data during development and testing * Two thirds of organizations (64%) are testing applications on a weekly basis Organizations not taking steps to address risks and leaving themselves liable to internal and external attacks on weekly basis

MOUNTAIN VIEW, CA - August 18, 2009

Micro Focus® (LSE.MCRO.L), a leading provider of enterprise application modernization, testing and management solutions, today exposes that global organizations have inadequate security measures for application testing, despite the fact the vast majority have experienced a data breach in the last 12 months.

Results of Micro Focus research, independently conducted by the Ponemon Institute amongst over 1,350 practitioners involved in application development and testing across the UK and the U.S., highlights that organizations are risking and exposing the confidential data of their customers by failing to secure it during testing processes.

The study, carried out in companies with revenues from $10 million to over $20 billion, shows that over three quarters (79%) have experienced at least one data breach in the last 12 months, yet nearly the same amount (70%) still do not have data masking techniques in place during any form of testing. The vast majority also confirmed they use customer records, employee records, credit cards and other business confidential information in application development and testing.

Even more concerning is that customers’ sensitive data is being put at risk on a very regular basis. Nearly two thirds (64%) need this data on a weekly basis for the application testing process with 90% confirming it is needed on a monthly basis. Despite the organizations’ own experiences and the current high profile of data breaches, only seven percent felt that data protection in the development and testing environment is more stringent than in regular production.

Adding to the complexity of the process is the size of the data that is being tested. A staggering three-quarters of respondents confirmed they use test data files that are larger than one terabyte, with some testing more than 50 terabytes of test data. Using such vast samples of data increases not only the amount susceptible to an external or internal attack, but also the scope for human error.

This research was independently conducted by the Ponemon Institute, which specializes in research on privacy, data protection and information security policy. The percentages contained within this release are the global average, based on the individual UK and US figures.

A full report of the results is available at http://www.microfocus.com/products/DataExpress/.

Executive quote

“Given the recent high profile of data breaches across the world and also the frequency with which testing takes place, it seems unbelievable that organizations have still not taken the necessary steps to ensure their data is secure during this regular process,” said Stuart McGill, CTO, Micro Focus. “In this difficult economic time, the last thing organizations want or need is to experience a significant data breach that can leave their own, or worse, their customers’ confidential information damaged or leaked. Companies need to act now and ensure they have the data masking capabilities in place to guarantee their data is watertight during development and testing.”

“These new survey findings strongly suggest that businesses are more concerned with completing application tests, even at the expense of sensitive customer and personal data,” said Dr Larry Ponemon. “It is understandable that organizations want to be efficient in this often time-consuming process, but cutting corners by not masking the data could cause irreparable damage to a company’s database and reputation if a major breach were to happen.”

About the company

Micro Focus provides innovative software that allows companies to dramatically improve the business value of their enterprise applications. Micro Focus Enterprise Application Modernization and Management software enables customers’ business applications to respond rapidly to market changes and embrace modern architectures with reduced cost and risk. For additional information please visit www.microfocus.com.

Technorati tags: Micro Focus | application modernization | application testing | IT security |

Bookmarklets:

Recent Press Releases

2010 Archive

2009 Archive

2008 Archive

2007 Archive

Jump to:

Main News Desk

Micro Focus Study Reveals Sustained Refusal to Secure Data Despite Constant Breaches

Executive quote

About the company