Home > Security Tips > Threat Monitor > How to perform a bug sweep
Security Tips:
EMAIL THIS
 TIPS & NEWSLETTERS TOPICS 

THREAT MONITOR

How to perform a bug sweep


Al Berg, CISSP, CISM
08.12.2005
Rating: -3.67- (out of 5)


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


The revelation of the identity of Deep Throat, the secret source of the Watergate scandal, reminded me of an old threat we still face today known as "bugging" or, as those in the business call it, "technical surveillance." Receiving information about a victim through audio or video surveillance provides an attacker with a wealth of information. And, as today's electronics become more sophisticated, bugging equipment once available only to spies is now easily obtainable on the Internet. In response to this threat, many corporations have started to perform bug sweeps or Technical Security Counter Measure (TSCM) operations, with the help of outside contractors.

TSCM is a specialized area, and performing a sweep requires expensive equipment that needs regular updating. As a result, sweeps can be pricey, although not as pricey as the losses from a bugged office. Many firms charge more than $10,000 for one floor of an office building. Therefore, you may want to limit the scope of the sweep to especially sensitive areas such as corporate management offices, boardrooms, etc. If you take this approach, it is important to remember to limit sensitive discussions to the "cleared" areas.

When researching vendors, ask about the equipment and techniques they use. Legitimate TSCM firms are up front about th



eir techniques and technology. To find out if a potential vendor is legitimate, ask for references and seek out recommendations. Your local chapter of the FBI InfraGard or Secret Service Electronics Crimes Task Force may be a good place to start. Industry associations, such as the American Society for Industrial Security (ASIS), may also be of help.

To help weed out the wannabes, let's take a closer look at five basic technologies used by genuine TSCM operators:

Like other forms of security testing, TSCM sweeps provide you with a snapshot of conditions at a particular time. For continued assurance that your offices are "clean" of surveillance devices, you'll need to repeat sweeps periodically. Most vendors provide some sort of "volume discount" for annual or biannual services.

TSCM services are not for every company, but if the disclosure of conversations or phone calls in your offices would cause irreparable harm to your business, you should consider checking to see if your walls have ears.

About the Author
Al Berg, CISSP, CISM is Information Security Director of New York City based Liquidnet (www.liquidnet.com). Liquidnet is the leading electronic venue for institutional block equities trading and the 4th fastest growing privately held financial services company in the US.

Rate this Tip
To rate tips, you must be a member of SearchSecurity.com.
Register now to start rating these tips. Log in if you are already a member.




BROWSE BY TAG
Threat Monitor,   Security Awareness Training and Internal Threats,   Information Security Management,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Threat Monitor
How to defend against rogue DHCP server malware
When BIOS updates become malware attacks
Mac OS memory flaws pose challenges for enterprise endpoint protection
Cybercrime and threat management
How to find and stop automated SQL injection attacks
Short-lived Web malware: Fading fad or future trend?
Security book chapter: The Truth About Identity Theft
How to use (almost) free tools to find sensitive data
How to block adult websites from enterprise users by logging content
Are Windows Vista security features up to par?

Security Awareness Training and Internal Threats
Twitter risks, Facebook threats trouble security pros
Social engineering training could disrupt botnet growth
How to write a risk methodology that blends business, security needs
Risk management must include physical-logical security convergence
Tabletop exercises sharpen security and business continuity
Security policies need simplifying, expert says
Microsoft IE 8 security only benefits educated users
Security book chapter: The Truth About Identity Theft
How to integrate the security of both physical and virtual machines
Laid off workers likely to steal company data, survey warns

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
dumpster diving  (SearchSecurity.com)
Honeynet Project  (SearchSecurity.com)
insider threat  (SearchSecurity.com)
National Computer Security Center  (SearchSecurity.com)
pretexting  (SearchCIO.com)
shoulder surfing  (SearchSecurity.com)
single-factor authentication (SFA)  (SearchSecurity.com)
social engineering  (SearchSecurity.com)
Total Information Awareness  (SearchSecurity.com)
trusted computing  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.



Research Solutions for Network Security, Access Control and Security Threats
More Security Resources for Resellers, VARs and OEMs
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy
  TechTarget - The IT Media ROI Experts