Access your Pro+ Content below.
Removable storage device endpoint security and control
This article is part of the April 2010 issue of Information Security magazine
Thumb drives, removable memory cards and smartphones often carry business data without IT permission, oversight or protection against loss or theft. Unfortunately, these handy little portable storage devices can jeopardize gigabytes of sensitive information. According to a study by Applied Research-West, three of four workers save corporate data on thumb drives, including customer records (25 percent), financials (17 percent), and business plans (15 percent). Yet, fewer than half of businesses routinely encrypt thumb drives. Fewer still consistently secure data copied onto today's rising tide of consumer smartphones. Some companies underestimate business risk posed by unencrypted portable storage. Others acknowledge the risk but, in lean economic times, lack the budget to battle it. But these excuses could leave employers in hot water if a regulated data breach occurs. "If [a portable device] carries customer or payment information, you have to protect it, no matter who owns it," says Mark Jordan, senior product manager at ...
Access this Pro+ Content for Free!
Features in this issue
Security experts say the Zeus botnet was slowed with the shutdown of Troyak, an ISP serving a large chunk of the Zeus botnet
Security teams will continue to focus on efficiency and alignment with business as the economy recovers
Endpoint security and control for devices like thumb drives, SIM cards and mobile devices can no longer be ignored.
Today's anti-fraud technologies create gated communities for online banking.
Columns in this issue
The information security profession took two steps backwards with the firing of Pennsylvannia's CISO because of his comments on a conference panel, which illustrates the continuing disconnect between management and information security.
Is outsourcing code development a threat to national security? Marcus Ranum and Bruce Schneier go head-to-head on this topic.
Lawyers have a lot of concerns about cloud computing services. Learn about cloud computing legal issues