Almost one third of organisations experienced an electronic attack which harmed the
confidentiality, integrity or availability of their systems.  Of these organisations, 15%
experienced more than 10 attacks.
Nearly two thirds of respondents thought their organisation needed to do more to ensure an
appropriate level of IT security qualification, training, experience or awareness among staff
and management.
Half of respondents used, or followed as a guide, IT security related standards.
One third or organisations thought their current level of IT security funding was adequate.
Over half of respondents were victim to Nigerian-style internet scams.
Nearly half of the respondents which experienced an electronic attack chose not to report the
incident to any external organisation

http://www.mediafire.com/?m04t6v49gnvi8mv