Log in

Posts Tagged ‘Mobile phone’

Biggest Data Leak in UK Companies, More Than 70% of UK Employees Admit to Data Theft

November 28th, 2010

: Alert: Data Leak in UK

For any company, data leaks are a huge worry, especially when so much personal and business data is stored. Most companies know they have information that is vital to their survival and that could damage the company if it falls into the wrong hands.

A survey has revealed that insider data theft is rife in the UK and theft of data by employees is common in UK companies. The most common methods of stealing the data were USB memory sticks (23%), personal laptops (23%), other portable storage (19%), mobile phones (13%), some 72% of more than 1,000 UK employees polled by security firm Imperva admitted taking data from an employer. The survey found 26% had stolen customer data, 25% had removed HR records, 25% had taken marketing data and 10% had lifted redundancy lists.

Almost half of those polled were aware of at least one colleague who had stolen data, and 69% believed a competitor had received information in this way. Intellectual property was the prime target, followed by customer information, the survey revealed. Faced with redundancy, 37% of respondents said they would want to take information with them, but that jumped to 70% if they knew they were about to be fired.

The most obvious problem is a lack of effective controls and data securityh software within UK companies, with a quarter of those polled saying their organisations did not restrict their access to sensitive information, and where there were controls in place, 44% of employees said they could get around these measures. “Companies are their own worst enemies, and this study confirms that,” said Amichai Shulman, chief technology officer at Imperva.

This is especially important because 59% of those polled said they would take information because they believed this information was rightfully theirs, including employees changing jobs. To overcome this and curb the loss of data to competitors, employers need to understand the problem, and define what constitutes intellectual property and why they retain ownership, says Shulman.

They need to re-examine what restrictions they have in place as a matter of urgency because they are not doing the job and are being circumnavigated, he says. According to Shulman, many businesses need to create policies that cover what is sensitive information, what is unacceptable behaviour, and what the penalties are for breaching such policies.

Another area of policy that companies typically neglect is regarding the removal of corporate information from personal devices when people leave. Some 85% of respondents said they had sensitive data on their home computer or mobile, 75% had a customer database, and 27% had some form of intellectual property.

But the survey found 60% of organisations did not have a policy to cover the removal of corporate information from personal devices as employees left the company and a quarter did not have any controls to restrict access to sensitive information.

Shulman believes that once UK law requires companies to report data breaches, there will be a growing awareness of just how much data is lost through employees in the course of normal business. “Effective tools will enable organisations to express their data protection policies rules based on the information they want to control,” he says.

How Alertsec Xpress Would Have Helped

In an incident which highlights the need of a data security and recovery software, the threat could have simply be reduced to an insurance matter by a mere investment of $13/month. The information would have been secure with no loss what so ever. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

All The Dirty Laundry Comes Out (lockergnome.com)
Imperva warns of rise in Stuxnet hacking threats (v3.co.uk)

No comments »

Posted in AlertSec Xpress, Alertsec Express

Tags: Company data breach Employment Imperva Information sensitivity Mobile phone Policy security USB flash drive

Lost Laptops & mobiles cost BBC £240,000

August 12th, 2010

Laptops & mobiles worth more than £240,000 have been lost or stolen from the BBC over the last two years, a Freedom of Information Act request from an IT security company has revealed.

The equipment stolen from BBC or lost during the period from April 2008 to March this year included 146 laptops, 65 mobile phones and 17 BlackBerrys. The value of the missing laptops has been estimated at £219,000, the mobile phones at £12,913 and the Blackberrys at £9,106, according to BBC reports.

This comes to a total of £241,019, or the equivalent of 1,656 colour TV licenses costing £145.50 each, although 9 equipments, worth £23,450 were recovered.

The F.o.I. request also revealed that a BBC employee was investigated over the theft of a laptop, but whether a disciplinary action was taken against that employee is still unclear as the corporation could not confirm it.

The General Manager of the IT security company said “it is shocking that any organization could lose so much equipment, but the BBC is just one of many we’ve seen recently, proving it’s all too common.

“In this case, however, this technology is paid for by the license payer and employees should be far more careful about how they handle it.”

A BBC spokeswoman added: “The BBC takes theft very seriously and has implemented a number of measures to reduce the level of crime.

“The portability of laptops and phones means that in any large organization there is an inevitable risk of theft.”

Moreover, with the devices, the invaluable data on them was also stolen. Sure, the hardware theft is covered by the insurance in most cases, but the data lost in the theft is almost never recovered.

How Alertsec Xpress Would Have Helped

If you use a data security software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

No comments »

Posted in Alertsec Express, laptop encryption, laptop theft

Tags: BBC Company Computer security Freedom of information legislation General manager laptop Mobile phone security

Report on Spam Sending Countries

March 26th, 2010

: Image via Wikipedia

According to the report by Panda Labs research analysts, Brazil, India and Korea top the list of countries which accounted for bulk of spam during the first two months of 2010.

Definition of Spam according to Wikipedia:

Spam is the abuse of electronic messaging systems (including most broadcast media, digital delivery systems) to send unsolicited bulk messages indiscriminately. While the most widely recognized form of spam is e-mail spam, the term is applied to similar abuses in other media: instant messaging spam, Usenet newsgroup spam, Web search engine spam, spam in blogs, wiki spam, online classified ads spam, mobile phone messaging spam, Internet forum spam, junk fax transmissions, social networking spam, and file sharing network spam.

The security research firm states that main attraction used as part of the spam injection technique is the promise of videos or photos of Brazilian girls.

In terms of percentage spam, Brazil topped with 13.76% of spam, while India came in second with 10.98% and Korea was at third position with 6.32% of spam expressed as percentile of total messages analysed.

It is absolutely true that world over everyone has been infected by the spam problem but the fact of the matter is that there are some countries which are contributing for majority of the spam. Why is that they are causing more spam than others? The simple reason is the security initiatives of the respective countries. When there are no encryption mechnaisms,they become an easy pray for spammers who can easily send spam emails to infect everyone’s machines and inturn the whole network.

The research analysts at Panda studied nearly 5 million spam messages. To identify and collect spam messages, Panda labs had set mail servers. These mail servers which are purposely setup with the intention of identifying spam are called ’spamtraps’. Through a spamtrap it is easy to identify the source ip, i.e. the origin of the spam.

In a statement issued by Panda Labs, “Another amazing data: the spam analyzed during these two months came from a total of almost one million different IP addresses. This shows that the spam is mostly sent from zombie computers belonging to a botnet.” This way, the computers of the infected users themselves are those which send the spam. The cybercrooks have thousands of computers at their disposal which do the dirty work for them.

In the list of most spamming cities, India’s capital city of New Delhi is lead by Seoul of Korea in the first place and Hanoi of Vietnam in the second position respectively. Vietnam, Korea and US also are among the top five countries from which most spam was sent during the first two months of 2010, said the study.

In the coming months, there will be a new report having more information about spam & data about spam.

About Alertsec Xpress

Alertsec Xpress is used in all organisations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to large multinational companies with offices around the globe. By using industry leading Check Point Full Disk Encryption (former Pointsec) software, Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption