Four steps to guard against data leakage from the endpoint

By Dennis Szerszen, on May 7, 2007 5:11 PM
Filed under Risk

The influx of inexpensive storage media — from MP3 players and PDAs to USB thumb drives and external hard drives — in today's enterprise facilitates the dissemination of information further and further away from the enterprise core, and attackers are writing increasingly complex, customised malicious code designed to compromise a company's proprietary information.

In this seemingly chaotic environment, data security has become one of the primary challenges facing all organizations as managers consider how to properly secure data throughout its lifecycle as both a security and compliance best practices measure.

This concern is not unfounded. The recent spate of data thefts and security breaches has created the potential for a huge amount of personal and sensitive data to become compromised:

o McDonald’s Japan was forced to recall more than 10,000 promotional MP3 players after discovering that the devices carried a spyware Trojan.

o Apple unknowingly shipped video iPods that were loaded with a Windows virus capable of compromising a computer.

o TomTom revealed that many of its GPS units shipped in the fourth quarter of 2006 were infected with a virus that could infect a computer if the TomTom unit was connected to the machine.

o Empire Blue Cross and Blue Shield in New York lost an unencrypted compact disc that contained personal information about 75,000 people.

These recent instances of data loss and malware infiltrations have enterprises looking long and hard at any number of potential holes in existing security nets for data leakage. And the unfortunate truth is that they are looking squarely in the mirror at themselves and their own employees. According to a variety of sources, the most significant security breaches come from insiders — both from malicious and seemingly benign activities. And now, with a barrage of new, portable storage technologies, it has never been easier for information to literally walk out the door.

The technologies used by today’s workforce

Never before have there been so many mobile workers. In the United States alone, more than 44 million were classified as teleworkers by the Dieringer Research Group. As a result of such a significant level of movement within our workforce — including contractors, employees and partners — making sure that information stays within the confines of the organisation is a major concern.

Technology has supported our need for mobility and has also provided additional means of communication. Removable storage media is at the centre of a variety of new ways we can share and use information. There are many new form factors for removable media today, including the small cards used in PDAs and cameras, thumb drives used to move files between PCs and personal entertainment devices.

You must be a registered member to access this content.
Please Sign in below or Register now.
NOTE: This Feature is more than 7 days old.
Please login to view the rest of this article

Registered users may log in here.

Login or Register now and get unlimited access.


Why sign up?
  • Unlimited access to SC Magazine content as well as access to to our global resources from SC Magazine US and UK editions.
  • Full use of over 11,000 articles database covering breaking news, video interviews, case studies, research, product reviews and exclusive features with fast and intuitive filtering of results.
  • Personalised "Recommended for you" filters to ensure you have the most relevant content at your finger tips.
  • Daily security bulletin direct to your inbox covering the latest security news from Australia/NZ and around the world.

Register now, its free! We'll never sell your details to third parties and it helps SC Magazine to keep serving you quality stories.
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read