Log in

Archive for the ‘laptop theft’ category

Data Breach and Hacktivism- A major threat faced by today’s organizations

March 28th, 2012

Verizon divulges deep into the Hacktivism world

A very shocking news but real fact came to light today when Verizon reported that hacktivism was responsible for the majority of stolen records in their annual data breach report. However, hacktivism is accounted for only 3 percent of the total 855 recorded attacks among several countries.

Emerging details

Hactivism has increased worldwide since last year. According to Verizon, last year 58 percent data theft was due to hactivism. Hactivists attribute a very small percentage of group of people but they are proving a major threat than criminals. Criminals usually target small thefts that cannot be detected fast and easily. According to the annual data breach report it was found that from a total of 174 million records that comprised of individual database entries and documents compromised in the 855 incidents, hacktivists had a share of 100 million records.

Professional criminals target smaller companies at large as they are yet to invest in security whereas large companies have already done so. Also it was found that hacking incidents were aimed at social and political objectives rather than aiming at financial gain.

The report stated that breaches were also noticed in India, US and 34 more countries and nearly 70 percent of those originated in Eastern Europe.

The statement given by Verizon

The latest trend distinguishes the past several years trend, when majority of the attacks were carried out with the aim of financial gain. It was also observed that seventy-nine percent of breaches that took place were opportunistic and ninety seven percent of them could have certainly been avoided. Data breaches were mainly caused due to external attacks while target being the outsiders. It included organised crime, activist groups, former employees, lone hackers and even organisations sponsored by foreign governments.

How to avoid data theft

In earlier times, data theft was related to website defacement or denial of service. Now the reports state otherwise. The problem always has been the detection of data thefts. Many of them go unnoticed. Some are not detected in the first attempt. Majority of data breach attacks are not recorded.

Verizon has verified its data breaches from various sources like the US Secret Service (USSS), the UK’s Police Central e-Crime Unit (PCeU), the Dutch National High Tech Crime Unit (NHTCU), the Irish Reporting & Information Security Service (IRISSCERT), the Australian Federal Police (AFP), the Irish Reporting & Information Security Service (IRISSCERT).

The EU plans to appoint a Data Breach Directive in the near future which will be active 24 x 7 for the reporting of consumer data as a legal requirement across the 27-nation economic area.

The organisations also need to speed up in protecting the vulnerable security system that cause data breach frequently.

Encryption software offered by Alertsec!

There are no short cuts to data security in any organization. This news stresses the need for data protection applications. In an incident which highlights the need of Data encryption software and recovery software, the threat could have simply been reduced to an insurance matter by a mere investment of $13/month. The information would have been secure with no loss what so ever. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model.

No comments »

Posted in Computer security, Data Protection, computer security software, data breach, data encryption, laptop theft

Tags: AlertSec Xpress Australian Federal Police data breach Data theft Encryption Hackers Hacktivism information security United States Secret Service Verizon Verizon Communications

NASA employee’s laptop stolen, sensitive data at stake

March 21st, 2012

Kennedy Space Center experiences laptop theft

Where and how was the laptop stolen?

The laptop theft of NASA’s employee took place outside the home of the employee’s car where he had left his laptop. This theft has caused 2300 employees of Kennedy space centre to suffer. The laptop contained personal information like employee names, race, and national origin, and gender, date of birth, contact information, college affiliation and grade-point average. It also included their Social Security numbers which obviously are at stake. A human resources office reported on March 5 and the theft took place at Orange County where the employee is residing. Officials said that there is low probability of exploitation of personal information of Kennedy space centre employees.

NASA is providing affected employees with one year’s worth of free cyber, identity, and credit monitoring and recovery services whose personal information was in the stolen laptop. Kennedy Space Centre spokesman Allard Beutel said initially the numbers of affected employees was predicted much lower than in real. Even though lots of data was stored on the agency servers, the employee’s laptop also contained more sensitive information and security numbers.

This theft has definitely opened eyes of all IT security systems and they are taking additional efforts towards data protection, encryption of devices. Officials said that they will be reviewing all IT security policies and practices to avoid such incidents in future. All the laptops including sensitive and general data at KSC will be encrypted by September 2012. However, this was planned and was going to be implemented before the theft took place.

NASA officials had a hard time ‘cleaning their act’. Any data has the possibility of being hacked if not encrypted properly. Lost laptops or loss of any electronic system that contains sensitive information could prove as the huge loss for any business. There are many methods to protect data on laptops such as alarms, locks or visual deterrents. It is always advisable to have a backup of data on servers, and to delete the sensitive information on laptops when the work is over.

We all are aware about the benefits of encrypting devices. Encryption can be done to a specific file or a whole disk. It ensures us peace of mind. We feel relaxed as our sensitive information is secured. Encryption also provides unauthorised access protection to our data. Encryption may be useless if authentication is not there. Some corporations need to pay huge fines if the laptops stolen are not encrypted. If the data stolen is very sensitive and related to business, it will cost you a lot for your business. Encryption will ensure that even if your laptop gets stolen, the data cannot be hacked by the best hackers also. After all, confidentiality is what we all need.

Try Alertsec

Alertsec, a reliable name in the world of data security is guiding organizations in their data protection policy. Alertsec Xpress is powered by Check Point Full Disk Encryption – the global leader in data encryption software with millions of users worldwide! For years, Check Point has been protecting more PCs, laptops, PDAs, smart phones and removable storage devices than anyone else in the world.

No comments »

Posted in Computer security, Data Protection, Encryption, Hackers, Identity and Information loss, Security Flaw, computer security software, data breach, data encryption, full disk encryption, identity theft, laptop encryption, laptop theft

Tags: AlertSec Xpress Check Point Computer security disk encryption Encryption Information sensitivity Kennedy Space Center laptop theft NASA Social Security number

Scottish charity reprimanded for USB data breach by ICO

March 13th, 2012

2 USB sticks containing mental health data stolen from Enable Scotland

Data sticks or USB drives look so small but carry so much of weight, don’t they? They carry a lot of data and if lost, are difficult to recover due to their size. Thus storing data on a USB drive and carrying it around is very easy, a perfect example of ‘advanced technology’ but what if they get stolen? What if data on a USB drive is compromised?

Today’s post deals with data breach at a Scottish charity wherein their 2 USB drives (memory sticks) were stolen.

The story

A Scottish charity has been admonished for not encrypting the USB device (memory sticks) by ICO (Information Commissioner’s Office). These data sticks belonged to Enable Scotland and contained data of people with mental health issues, their addresses, and date of births which has now been stolen by thieves. The device was stolen from employee’s home that contained information of 101 people. According to the Data Protection Act rule the data should be erased after it has been uploaded on servers to avoid such data breach. It should also be in practice to knowledge the home workers how to handle such secured information in the form of memory sticks that are not routinely encrypted. Enable Scotland has admitted that the data stolen was not explicit yet it contained names of people who are connected with this charity for mental health issues. They had failed to delete it after their use. During an investigation, it was also found that mobile devices were not encrypted too that are used for storing sensitive information.

Penalty in form of money is charged for such loss of data by any organisation but this being a charity we are not confirmed as it charities are not charged penalty in form of money. However, Enable has started working on improving their agreements and policies with Data Protection Act. They will also educate their workers on data protection procedures and ensure that their mobiles are encrypted. It is pleasing that Enable reported the breach as early as they could but the information once lost cannot be regained though.

Enable has taken a good step towards data breaches to protect their customer information. However, it should be a learning for all other charities out there to safeguard their people’s sensitive information. ICO recently handed out a fine to Cheshire East Council for emailing sensitive information to wrong recipients.

Data breaches are really a matter of great concern nowadays. The amount of data loss that is taking place is worrying and many organisations do not have hundred percent protection policies towards their employees data. It is very important that sensitive information must be secured. Routine Encryption of devices must be made mandatory to avoid such losses of data otherwise there will be no end to cases like these in near future. So that even if the data is stolen encrypted devices will ensure protection of information. Businesses should have this obligation towards their society to avoid such thefts as majority of them take place outside the corporate environment.

Your system needs Alertsec!

There are no short cuts to data security in any organization. This news stresses the need for data protection applications. In an incident which highlights the need of Data encryption software and recovery software, the threat could have simply been reduced to an insurance matter by a mere investment of $13/month. The information would have been secure with no loss what so ever. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model.

No comments »

Posted in Computer security, Data Protection, Encryption, Hackers, Hard Disk, Identity and Information loss, computer security software, data breach, data encryption, identity theft, laptop encryption, laptop theft

Tags: AlertSec Xpress Check Point data breach Data Protection Act 1998 Encryption Hardware ICO Information Commissioners Office Information sensitivity Office Storage USB USB flash drive

NASA Laptop containing Space Station Control Codes stolen

March 11th, 2012

Charles Bolden intends to implement tough security measures at NASA

Did not we all assume that organizations like NASA can never loose any data, let alone get their computers stolen? Well, one of their laptops did get stolen and it contained Space Station Control codes!

The NASA laptop theft

A NASA computer containing unencrypted codes that were used to command and control the International Space Station was stolen in March 2011. An internal audit brought this discrepancy to notice along with some other loopholes in the system.

According to Paul Martin, inspector general of NASA” could result in significant financial loss, adversely affect national security, or significantly impair our nation’s competitive technological advantage.” “NASA cannot consistently measure the amount of sensitive data exposed when employee notebooks are lost or stolen because the Agency relies on employees to self-report regarding the lost data rather than determining what was stored on the devices by reviewing backup files,”.

Martin further stated that NASA’s data security budget is more than $1.5 billion every year, including more than $58 million on IT security. But this didn’t stop hackers from breaking their system 5,400 times in 2010 and 2011, ranging from “individuals testing their skill to break into NASA systems” to “well-organized criminal enterprises hacking for profit” to “intrusions were engineered by foreign intelligence services.”

It is a surprising fact that only 1% of NASA employee laptops are encrypted. Senator Bill Nelson wanted to know “Why is NASA so far behind the rest of the government in securing the data on its portable devices?”

According to NASA officials it is difficult to gain authorized access for the hackers to the space station. At times computer viruses were seen but none of them were dangerous enough to hack the system.

The space agency’s chief Charles Bolden’s take on the matter:

“I can take action there, and I intend to do so,” Bolden told Nelson, “That is a matter of behavior and personal discipline.”

Bolden has sent a memo to all NASA’s employees requesting them to encrypt their machines and devices that carry valuable information.

Who are these hackers?

Hackers from China, Great Britain, Italy, Nigeria, Portugal, Romania, Turkey and Estonia have been arrested and convicted in relation to data thefts at NASA. The hack that took place in Nov 2011 revealed IP addresses of networks in China.

What does NASA need to do?

Paul Martin reminds ”NASA needs to improve agency-wide oversight of the full range of its IT assets” and must encrypt more of its mobile and laptop devices, of which just one per cent are currently encrypted, he said.

Until then, NASA “will continue to be at risk for security incidents that can have a severe adverse effect on Agency operations and assets”.

Alertsec can save your laptops

Save your company from countless problems related to laptop thefts and data security down the road. Imagine one of your laptops containing all of your company’s current pricing structure, sales leads, and customer orders, were lost and there was no backup data! Or worse: what if your competitor got his hands on your data?

The fact that we now buy more laptops than desktops shows that the information we all store is increasingly more vulnerable to be exposed. It is a much higher risk to lose a laptop than a desktop computer.

The only way to protect information stored on a PC or laptop is by using encryption. Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users.

The following preventive measures can be done to increase laptop security and reduce damage if your laptop is lost or stolen:

a. Always have a fresh back-up on a server or back-up device

b. Use Laptop encryption

No comments »

Posted in Computer security, Data Protection, Encryption, Hackers, Identity and Information loss, computer security software, data breach, data encryption, identity theft, laptop encryption, laptop theft

Tags: Computer security Control character International Space Station IP address laptop NASA NASA Office of Inspector General Paul Martin Space Space station Technology

Tracking software helps catch laptop thief in Altadena, Los Angeles

February 25th, 2012

Tracking software helps recover stolen laptop

We cannot stress how important it is to get your laptop encrypted. Dozens of cases very month are related to laptop thefts.

What is scary is that 97% of stolen laptops are never recovered! Intellectual property theft is on the rise and we need stricter laws to keep laptop thieves at bay. It is just not the physical thing that you lose but you lose sensitive and valuable data. If you own a laptop, today’s post is for you. In case you ever loose your laptop but have encryption software loaded, you stand a good chance of getting your laptop back.

Today’s article not only helped the detectives to recover a stolen laptop but also other items that the thief stole like rifles and iPhones!

Read on

In January, Los Angeles County sheriff’s detectives marched into the home of Raymond Jackson, 57, and found stolen goods that included a laptop which was protected by a encryption software. The laptop was stolen from an Altadena residence in May 2011. The detectives were on to this case for last 9 months.

They kept monitoring the laptop’s use through the tracking software. What they actually did was that they captured the keystrokes and screen images in November 2011. That helped them to zero in on Raymond. Prior to that Raymond did use the laptop but the data was not much to go for for the detectives.

With the help of the search warrant the detectives managed to recover not only the laptop but items like a legally banned, unregistered assault rifle; a pair of loaded rifle magazines; a .32-caliber revolver with a scratched-off serial number; and six stolen iPhones. 2 of the iPhones have been confirmed as stolen.

Jackson was arrested at his home and later released after posting $50,000 bail. He is scheduled to appear again in court March 12.

Sheriff’s Detective David Gaisford comments

“The use of tracking software for one crime, led to the solving of multiple crimes,” said.

“My partner and I have recovered several laptops over the last year alone through laptop tracking. They often lead us to property stolen in other crimes.’”

Some do’s and don’ts for laptop users

Do’s
• Choose a password which is hard to decipher.
• Create a different password for every website that you use.
• Use anti-virus software on your laptop.
• During the coffee break, lock your keyboard or log off.
Don’ts
• Use an easy password like your birth date, car or phone number.
• Do not give your password to anyone however close to you.
• Open attachments or emails that look dicey or are from an unknown source.

Cyber-security with Alertsec

Alertsec Xpress is a very easy and convenient service which enables securing valuable information on laptops.

Alertsec Xpress is powered by Check Point, the market leader in the field of mobile data protection. The software was launched 16 years ago and is the most robust software on the market today.

Alertsec Xpress provides: