This one of the results from the “Global IT Security Risks” survey conducted by Kaspersky Lab in partnership with B2B International. More than 1 300 IT professionals in 11 countries participated in the survey.

The most common security threat comes in the form of viruses, spyware and other malicious programs. In addition, 31% of malware attacks resulted in some form of data loss, with 10% of companies reporting the loss of sensitive business data.
Only 70% of companies have implemented anti-malware protection solutions fully across their businesses – and 3% have no protection at all.
The level of anti-malware implementation varies from country to country – in emerging markets 65% of companies have adopted it, while in the UK and US levels of implementation stood at 92% and 82% respectively. Despite this, the vast majority of companies still experienced an IT security breach in the last 12 months, and almost one-third lost business information.
“Such an attitude is surprising when you know that almost half of all organisations see cyber-threats as one of the top-three emerging risks – IT strategy is ranked even higher than financial, marketing and human resources strategy,” says Alexander Erofeev, director of market intelligence & insight at Kaspersky Lab. “The most likely explanation is underinvestment in IT security.”
The study shows that every second company evaluates its IT security budget as insufficient, and estimates that an increase of 25% or more is required. Currently, the average investment in IT security is reported to be $8 055 for small businesses, $83 200 for medium-sized companies and $3,-million for large corporations.