DocuCrunch.com » A new way employees are exposing company data

A new way employees are exposing company data

April 13, 2010 by Sam Narisi
Posted in: In this week's e-newsletter, Security

Are employees unknowingly making your company’s data available on the Internet?

That’s what about 100 businesses recently learned was happening, via a warning letter from the Federal Trade Commission (FTC).

The FTC notified the businesses it had discovered sensitive data about their workers and customers on peer-to-peer (P2P) filesharing networks, where it could be downloaded and used to commit identity theft or fraud.

The likely cause of the leaks: Employees downloaded P2P clients at work to download music and video files, without realizing the programs were configured to share everything on the person’s hard drive with outside users.

The FTC’s letters make it clear: Companies with sensitive info exposed may have broken the law — and blaming users for their behavior won’t shield companies from liability.

Said the FTC: “It is your responsibility to protect such information from unauthorized access, including taking steps to control the use of P2P software on your own networks and those of your service providers.”

Companies should take steps now to make sure users aren’t exposing data:

  • Write a policy against installing P2P clients on company computers
  • Monitor your network to detect unauthorized programs, and
  • Use firewalls to block outsiders from accessing the network.
  • Share/Bookmark

DocuCrunch.com delivers the latest IT and Imaging news once a week to the inboxes of over 200,000 IT and Imaging professionals.

Click here to sign up and start your FREE subscription to DocuCrunch!

Tags: , ,


3 Responses to “A new way employees are exposing company data”

  1. Bob Says:

    Routers and / or firewalls can easily be configured to block P2P sharing networks

  2. Karl Says:

    I always find it interesting that employees feel what they want personally is so important. Then after they expose their companies’ sensitive information it’s the company’s responsibility. Do they ever think that they might be creating a situation where they themselves could end up unemployed? I know that ethics and morals are not PC, but they sure do make a lot more sense than our current lack of them. Maybe it is time we hold employees responsible for their actions, and set strict guidelines for them to follow regarding the use of P2P software.

  3. Judge Says:

    What kind of donut network is this? These controls should already be in place.


advertisement


Whitepapers

  • How to Select a Web Host
    November 27, 2011 by marketing

    Creating a new website?  Not sure how to choose from among all the options?  Need shared hosting, small business hosting, or VPS hosting?  Lots of email accounts? 5-star reliability rating? Fortunately, there’s information available to help. The Best Web Hosts is great resource that will help you select the best web hosting company. It features reviews, rankings, and definitions that can help make your job of selecting a new web host more effective.

  • SMART Steps Towards Workload Automation
    January 19, 2010 by Luke Marchie

    Consolidating job scheduling into a single, comprehensive workload automation solution is a critical first step to effective Workload Automation (WLA).

    Download the free whitepaper here! More…

  • Identifying and Thwarting Malicious Intrusions
    January 12, 2010 by Luke Marchie

    Identifying and Thwarting Malicious Intrusions

    The phenomenal growth in social media has opened the door for all new malicious intrusions from gangs of cyber criminals. Utilizing the trusted relationships in social networking and benefiting from immature security and content controls, hackers are seeing increased performance in their attacks.

    Download the free whitepaper here More…

  • The Security Issues with Web 2.0
    January 12, 2010 by Luke Marchie

    The collaborative benefits of Web 2.0 technologies have fueled rapid growth in online consumer markets and now are being adopted by businesses worldwide. With these technologies come new types of attack vectors.

    Download the free whitepaper here

    More…

  • Network-Critical Physical Infrastructure: Optimizing Business Value
    December 29, 2009 by Luke Marchie

    To stay competitive in today’s rapidly changing business world, companies must update the way they view the value of their investment in Network-Critical Physical Infrastructure (NCPI). No longer are simple availability and upfront costs sufficient to make adequate business decisions. Agility, or business flexibility, and low total cost of ownership have become equally important to companies that will succeed in a global, ever-changing marketplace.

    Download the free whitepaper here! More…

  • The New World of eCrime: Targeted Brand Attacks and How to Combat Them
    December 26, 2009 by Luke Marchie

    Nothing is more valuable to a business than its reputation. That is why brand attacks, which leverage a company’s valuable brand for nefarious purposes, must be battled on every possible front. Brand attacks are the new form of eCrime, and they’re being launched with new and rapidly evolving exploits, including phishing and—most recently—malware.

    Download the free whitepaper here! More…

  • DDoS: The Mother of All Cyber Threats
    December 16, 2009 by Luke Marchie

    DDoS: The Mother of All Cyber Threats

    Don’t wait until your business is targeted. A Forrester Consulting study commissioned by VeriSign revealed that nearly 75 percent of the 400 study respondents have experienced one or more DDoS attacks in the past year. Yet, most e-commerce businesses are not prepared for a large-scale DDoS attack. Could your business afford three or more hours of downtime? Avoid that revenue loss by registering for this free white paper

    Click here to download the free white paper More…

  • View more offers


    Quick Vote

    • Does your office have a color printer or copier?

      View Results

      Loading ... Loading ...

  • advertisement