Your employees are losing your data and putting your company, and your job, at risk right this very minute. Some are completely unaware they are doing anything wrong, while others don’t care. Yet others may be trying to steal this data to bring personal or financial ruin to your company. In any case, here are just some of the ways your data is being lost- right now.
1. Third-Party e-mail – Services like Gmail and Yahoo! have a place outside of the organization for your employees. However, in order to maintain the integrity of the corporate network, these third-party e-mail services should not be allowed. Let’s just use the “I mistakenly attached the wrong document to my kid’s football team thread”. Now imagine that document contains the private credit card numbers of your clients or personal medical information. You have a disaster on your hands, not only to your reputation, but to your pocketbook by way of fines.
2. Cloud Storage Apps – DropBox. Box, etc. Dropbox gets hacked and continues to see intrusions from all angles- simply because of what it is- a storehouse of information. Your employees say they don’t use it. A recent report from ZDNet states that one in five employees use dropbox for work documents. That figure is STAGGERING. This means your corporate data has the potential to be seen by hackers, leveraged by thieves and has the potential to destroy your company.
3. Docs in third-party-apps. Your employee is using Facebook, they decide to send themselves, or others, important internal information. Your information is now on the Facebook highway. Do I need to say how much of a no-no this is? Now how about those apps that aren’t as secure as Facebook, which works on security continuously. Facebook accounts are hacked at the rate of 600,000 per day. Chew on that.
4. Removable media- Thumb drives and CD-rom, DVD-rom are used each and every day. Put in the wrong hands, without encryption, without safeguards – puts your data in risk. The fact that you can download gigs of data on one device makes this a frightening reality. There goes your entire database of clients right out the door with Stacy- she wants to work on those reports tonight from home, so she put the thumb drive in her pocket to plug in at home. Unfortunately, when she sat down on the subway, the darn thing fell out of her pocket when she rushed for the door to get out to go to her Yoga class. Don’t worry, though- that scary looking guy retrieved it for her. Later on, when he puts it into his laptop and realizes he has 4,000 credit card numbers, I’m sure he’ll alert the authorities right away. Oh yeah, Stacy is so upset that she lost the thumb drive, she forgets to mention it the next day at work. It’s only about two weeks later, after $600,000 worth of your client’s credit has been charged that you realize there has been a breach.
5. Former employees – How many of them still have passwords and usernames that you have yet to remove from your corporate database? Do you have a web interface to login? Did you fire that employee? Did you “downsize” and that employee went to a competitor? How long ago? Have you checked who has been logging in and out? Do you have that capability?
These are just a few ways your data gets lost- I didn’t even mention the BYOD issues or the loss of a company laptop.
What are some of the ways your company is battling back against data loss?