/ciol/media/agency_attachments/c0E28gS06GM3VmrXNw5G.png)
Follow UsMUMBAI, INDIA: Web2.0 concept has changed the face of Internet and web technologies. In fact, it has added dynamism to the websites along with sharing of contents.
This interactive feature has expanded across all sections right from social networking sites, wikis to communities and blogs. And it has even gone a step ahead towards becoming a platform of business and brand promotion.
However, on the other side it has opened up the gates for cybercrimes such as hacking, embedding of malicious content, virus and spams, phishing, data stealing and so forth. So it leads to big a question on Web2.0 in context to its business usability versus security for organizations and businesses.
Websense, the global leader in integrated web, data and email security solution today revealed the outcome of its worldwide survey - Web2.0@Work that focuses on the state of Web2.0 use, policies and security at businesses.
It was conducted in 10 different countries including India, US, UK and Asia Pacific region, where1300 top IT managers from organizations having 250 or more computer users were quizzed on their perceptions of Web2.0 in the workplace, understanding of Web2.0 technologies and the organization's level of security preparedness.
Among the key findings, about 95 per cent respondents were allowing staffs to access to some Web2.0 sites and applications, mostly webmail, mashups and wikis, while 62 per cent believed that Web2.0 is necessary to their business.
It states that though many Web2.0 services were designed for consumer use and not for business, organizations across industries are already using them to increase collaboration and information exchange, streamline processes, engage key stake holders and generate revenues.
According to Surendra Singh, Websense's regional director - SAARC & India, today CIOs and IT managers believes that Web2.0 helps employees balance their life and work in a 24x7 work environment and hence organizations are allowing its access.
About 86 per cent respondents felt pressure to allow more access to more types of Web2.0 sites and technologies, while 30 per cent directed towards pressure from C-level executives and director level staff. Moreover, 34 per cent pointed to pressure from marketing department and 32 per cent from sales department.
However, this trend is putting IT departments in a situation to find right balance between preventing security risks while allowing safe and flexible access. Further, the study pointed that though many organizations had access to Web2.0 environment, there exists a dangerous security gap.
Further, about 80 per cent respondents reported feeling confident in their organization's web security, despite the fact that the numbers show they are ill-equipped to protect from Web2.0 security threats.
“You cannot stop Web2.0 access as it is important to business but you can make it secure and safe using tools. However, there are online tools that offer real-time scanning for malicious content or threats and then can help to block such malicious content or sites. It also prevents flow of critical organizational information outside,” says Singh.
Interestingly, the study states that 68 per cent respondents did not have real-time web content analysis, while 47 per cent respondents reported that users in organization try to bypass web security policies. Most respondent admitted for not having security solutions against spyware and embedded malicious codes on trusted codes.
And 45 per cent IT managers reported of not having data loss prevention technology to prevent company confidential information from being uploaded to sites like blogs, wikis, hosted on unauthorized cloud computing sites or leaked as a result of spyware and phishing attacks.
“In Indian context, threats for information stealing will grow in coming years, however there's lack of awareness on this protection of personal and organization information. While, in the US it is mandatory that any information leakage or any incident of cybercrime on trusted sites needs to be reported to its users or customers,” concludes Singh.