Is Security Over or Under-Estimated?

According to the results of an RSA survey, 54% of respondents have addressed a security incident but only 11% reported it. Based on what we see reported in the news, that would imply that the issue is actually 5 times greater but that we don't hear about 80% of it. What we have heard about for many months is that the Storm worm is everywhere, yet only 14% of the respondents claim to have been hit by it in any way. Either the reports of Storm's pervasiveness are grossly exaggerated, or there are many organizations that have Storm infections that don't even realize it. For more about the report, take a look at this Network World article by Andreas Antonopoulos.