CENTENNIAL Software is warning companies to protect their corporate data against the threat of ‘podslurping’ – this is when a removable media device, such as an iPod or USB stick, is used to steal confidential information from the business.
To help companies combat this growing threat, Centennial Software has launched the DeviceWall version 3.0.
Features of the DeviceWall version 3.0 include:
* ‘Read Only’ access to CDs, USB sticks and other portable devices – allows users to view CD presentations, for example, but protects against sensitive information leaving the organisation
* Wireless lockdown allows managers to block Bluetooth, WiFi and Infra-red connections, preventing company assets from making connections with unauthorised devices and networks
* New device classes include specific categorisations for MP3 players and digital cameras, allowing organisations to be more selective about which devices should be allowed and which should be blocked.
Thanks to the ‘plug and play’ functionality in Windows, data thieves are now finding it easier than ever to remove large volumes of files without arousing any suspicion in the workplace.
“iPods, PDAs and USB sticks are now such a common sight in offices that we rarely give them a second glance,” said Regional Manager for Centennial Software, Phil Hare.
“Yet a firewire-connected media player can easily download over 6GB of files from a corporate PC in less than two minutes. That represents a major risk to the integrity of customer databases, R&D projects and financial information.”
According to Centennial Software, combating this new threat is rising rapidly to the top ‘To Do’ lists of CIOs. Companies are realising the risks associated with failing to maintain a clear boundary between the corporate network and personally-owned removable media devices, particularly with mobile working becoming the norm.
“Information security has been a top of the mind concern for CIOs, particularly in the last four years,” said IDC IT Management Programme Analyst, Australia and New Zealand, Vipul Bhargava.
“Advancements in mobility technology surrounding Smartphones, PDAs and other mobile devices have further fuelled this concern. Organisations need to understand that mobile devices could be the weakest link in their security strategy.”
“A lack of corporate policy with regards to mobile devices could result in an organsiation’s security strategy going haywire,” he added. “Furthermore, [US] government and industry regulations such as Sarbanes-Oxley, HIPAA and Gramm-Leach-Bliley have placed unprecedented pressure on organisations to secure their data.”
Expert research shows that sales of portable drives are set to increase exponentially over the next five years, with hard disk drive shipments at 15.5% compound and consumer hard disk drives at 37.5%, according to Centennial Software.
The company said tenders for solutions to ward off this internal security threat have been on the increase for at least the last three months.
However, Centennial Software has warned that many companies are not taking the correct steps to protect themselves, or are focusing on external security threats, such as worms or DDOS rather than internal threats, which often relate more to intellectual property, than to infrastructure and operations.