Malware Threats from Unlicensed Software: The Critical First Step for Cyberrisk Management

posted by in Compliance and Enforcement April 23, 2015
Apr 23

Waking up to find your company on the front page news and at the center of a data breach is every CEO’s worst nightmare—and for a number of businesses, it has become reality. Today, the threats from cybercrime are real and frightening, and the risks are extraordinary. Cybersecurity is an incredibly complex issue and business leaders are grappling with how to best protect their businesses, understand the new business vulnerabilities, and identify what steps they can take to protect themselves and their customers from becoming a victim of cybercrime.

There is a strong case for organizations to put protection from malware at the top of their risk agenda. In the past year, 43% of companies experienced a data breach. The average organization experiences a malware event every three minutes, and the costs of dealing with that malware can be astronomical. The International Data Corporation (IDC) estimates that enterprises spent $491 billion in 2014 as a result of malware associated with counterfeit and unlicensed software.

A threshold step to mitigating risk is gaining an understanding of your own network and if the software you are using is genuine and fully licensed. Unfortunately, many businesses are failing to take this basic and critical first step to protect themselves.

It has long been suspected that there is a connection between unlicensed software and cybersecurity threats. A new study commissioned by BSA | The Software Alliance and conducted by IDC confirms this as fact.

The study compared rates of unlicensed software installed on PCs with a measure of malware incidents on PCs across 81 countries. Given that 43% of the software installed on PCs globally in 2014 was unlicensed, it’s clear that many businesses are at risk. The findings were sobering. The implication for governments, enterprises and consumers is clear: assessing what is in your network and eliminating unlicensed software could help reduce the risk of cybersecurity incidents.

Fortunately there are proven best practices available to tackle the challenges around software licensing.  The world class standard for Software Asset Management is ISO/IEC 19770-1:2012. The importance of implementing internal controls for legal use of technology, including software, has become so critical that COSO now recommends it in its revised Internal Control – Integrated Framework.

While putting controls in place may sound simple, many businesses are missing this first step. Only 35% of companies have written policies requiring the use of properly licensed software. For CEOs, now is the time to start implementing best practices that will help mitigate security risks and avoid your business becoming tomorrow’s news headline. For more information on additional steps you can take, visit BSA’s website.

Malware Study

This post originally appeared on Risk Management Monitor on April 16, 2015.

Time for Congress to Act on Cyber Threat Information Sharing

posted by in Cybersecurity April 21, 2015
Apr 21

Both public and private sector entities fall victim to cyber criminals and other malicious actors each day. Sharing information about cyber threats is critical to prevent and combat these attacks.

Over the past several years, Congress and the courts have taken steps to clarify and promote information sharing. Last year, the Department of Justice and Federal Trade Commission provided guidance clarifying that private entities can share cyber threat information without raising antitrust concerns — helping to pave the way for more timely cyber threat information sharing. That was a helpful step but there is more that can be done.
(more…)

Strengthening the Patent System by Ending Patent Abuse

posted by in Intellectual Property March 19, 2015
Mar 19

Patent reform is top of mind on Capitol Hill this month as several Committees hold hearings to discuss the need for patent reform. BSA was honored to testify today at the Senate Committee on Small Business and Entrepreneurship. My testimony underscored the need for legislative action to curb abuses in the patent system.

The Small Business Committee is the ideal venue for an organization like BSA to present our views. Although our members range in size – from very small to large, each of them was founded by one or two individuals with passion, an idea, and a vision for making that idea a marketplace reality.
(more…)

Closing the Gaps in EU Cybersecurity: Let’s Get It Right

posted by in Cybersecurity March 5, 2015
Mar 05

Bolstering cybersecurity is a challenge facing boardrooms and government officials around the world. While technology is enabling us to be smarter about how we communicate, create, and solve problems, it has also introduced new risks which must be managed.

In Brussels next week, Member States will meet in Coreper as they continue to work toward consensus on a Network and Information Security (NIS) Directive aimed at harmonizing cybersecurity laws across Europe. That is no small feat when negotiating among 28 countries. A report released this week by BSA charts just how big a task they have before them. (more…)

It’s Time to Support Software Industry Priorities

posted by in Intellectual Property March 3, 2015
Mar 03

The global software industry – exemplified by the unparalleled success of American-born innovation – is changing the way we live. Software creates jobs. It sustains vibrant economies. And it enables us to do amazing things by connecting human ingenuity with technology to not only improve how we live our lives every day but also turn remarkable new ideas into reality.

In recent years it’s been a challenge to foster cooperation and deal making in Washington. However, White House and congressional leaders seem eager to change this dynamic and demonstrate they can work together to pass legislation. This week, the General Counsels of BSA | The Software Alliance member companies are coming to Washington to urge action by Congress and the Obama Administration on a bipartisan, achievable, pro-growth agenda focusing on patent reform, government access to private data, and removing trade barriers. These issues don’t require new spending or changes in the tax code. But they are common sense, drive economic growth, and — with the right support – are achievable this year. (more…)

Malware Threats from Unlicensed Software: Real or Imagined?

posted by in Compliance and Enforcement, Cybersecurity February 18, 2015
Feb 18

It has long been assumed that there is a connection between unlicensed software and cyber security threats. In fact, BSA’s most recent Global Software Survey found that computer users cite exposure to cybersecurity threats from malware as the chief reason not to use unlicensed software.

Malware_ThreatsTo test whether this relationship is indeed real or imagined, BSA commissioned a new analysis from global research firm IDC comparing rates of unlicensed software installed on PCs with a measure of malware incidents on PCs across 81 countries. The results show there is a strong positive correlation between unlicensed software and malware encounters – the higher the unlicensed software rate in a country, the more malware (more…)

Supreme Court Action on Patents Leaves Room for Reform

posted by in Intellectual Property February 12, 2015
Feb 12

Today, the House Judiciary Committee’s Subcommittee on Courts, Intellectual Property and the Internet held a hearing to examine recent Supreme Court cases in the patent arena. The hearing was carefully watched by opponents and supporters of the Innovation Act (HR 9), a bipartisan patent litigation reform bill introduced last week.

BSA and its member companies strongly support the Innovation Act. The bill is carefully crafted to curb abusive practices in patent litigation and to address asymmetries in the cost of patent litigation that provide incentives to assert weak patents and meritless infringement claims. Today’s hearing made clear that, while the Supreme Court has taken steps to correct imbalances in patent litigation, meaningful change lies beyond the Court’s role in interpreting existing law. (more…)

Pick up the pace on a Transatlantic Trade and Investment Partnership

posted by in Global Markets February 5, 2015
Feb 05

EU and US negotiators have come to the table in Brussels this week to continue discussions on a Transatlantic Trade and Investment Partnership (TTIP).

No one ever said negotiating trade agreements was easy. But if these two countries act now, the benefits will be far reaching.

TTIP was envisioned as an ambitious opportunity for the US and EU – two of the world’s most important economies – to simplify and grow trade and business opportunities between their two markets. One study commissioned by the European Commission projects that TTIP could result in an increase of €119 billion in EU GDP and €95 billion in the US, and increase global income by almost €100 billion by 2027. (more…)

Tags , , ,

Executive Survey Shows the Benefits of Data Innovation Across the Whole Economy

posted by in Data, Global Markets December 10, 2014
Dec 10

HomepageFeature_datasurvey

There are pervasive myths and misconceptions about how data innovation is transforming the global economy, from the idea that it’s all about so-called “Big Data” (in fact, analyzing even small data sets can produce useful insights) to the false notion that all data is personal information (when discoveries are being made from data sources such as wind turbines, jet engines, financial markets, crop harvests, traffic patterns and energy consumption).

Today we released a new survey that sets right another such myth — that big tech companies and Silicon Valley start-ups are the main beneficiaries of data innovation. The reality is that data tools are catalysts for innovation and growth across the whole economy, and the benefits of that innovation and growth accrue to society as a whole. (more…)

Pass Surveillance Reform Now

posted by in Data November 14, 2014
Nov 14

BSA | The Software Alliance and other leading technology groups sent the followng letter on September 8, 2014, to the US Senate calling for a swift vote on the USA Freedom Act. The bipartisan legislation would strengthen privacy protections for the public by reforming the Foreign Intelligence Surveillance Act (FISA). Click here for the letter in pdf format.

 

September 8, 2014

Dear Majority Leader Reid and Republican Leader McConnell:

The undersigned trade associations and organizations, representing leaders in the technology sector, write to urge your support for the bipartisan USA FREEDOM Act, S. 2685, introduced on July 29, 2014 by Senators Leahy, Franken, Lee, and Heller. (more…)