Companies rush to plug 'data leaks' - Network World

Skip Links

DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Security

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library.  Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.
Audio

Hacker writes Cisco rootkit; Microsoft launches online telescope. Listen now!

Network World 360

Wireless dangers at airports. Listen now!

Network World Panorama

Additional Resources

RSS

FEATURED REPORTS

Executive Guide: Storage Heats Up HP

Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.

RSS

FEATURED WEBCASTS

Get Real-world Advice on how to Cost Effectively Consolidate your Data Center Novell

Discover the benefits of paravirtualization in this informative webcast today. This server virtualization-themed webcast not only explores how to improve virtualized server performance, but provides real-world user examples, explains how to optimize workloads and discusses the future of server virtualization. Focus on only the themes that interest you or watch all six consecutively for a full picture of how you can lower your costs significantly through consolidation and virtualization. Register below to learn more and be entered to win an Archos 605 Portable Media Player.

IT Buyer's Guides

View All Buyer's Guides

Free Newsletters

Sign up and receive the latest news, reviews and trends on your favorite technology topics

Save The Date!
What They Are Saying

I'm an American, and my government-funded schools taught me that government censorship is bad! It's...- Ben

Join the Discussion

Companies rush to plug 'data leaks'

By Ellen Messmer , Network World , 06/06/2005
  • Social Web 
  • Email 
  • Feedback 
  • Close

The threat entails employees leaking sensitive data about customers, finances or intellectual property in violation of security policies and regulatory requirements. Sometimes it's by mistake and sometimes the employee is looking to make a financial gain.

To combat data leakage, a growing number of vendors are pitching products designed to monitor sensitive information and block outgoing e-mails or instant messages containing it. This week alone, newcomer Fidelis Security Systems will debut, veteran player Vidius will change its name and launch a product, and Tablus will reveal plans to deliver a product that combines network- and desktop-based monitoring.

Data-leakage prevention products typically work by being allowed access to databases to keep track of what an organization considers sensitive data and compare it with what goes out. But questions of false positives, missed leaks and its expense - $100,000 is not an unusual price - have kept leakage detection in a niche reserved for a limited group of companies and government agencies.

Inside jobs

"It does stop e-mail with sensitive data," says Janet Behnke, IT manager at First Financial Credit Union in Los Angeles, which uses a gateway from Vidius (now called PortAuthority Technologies) at its Internet access point. The product is used to watch for sensitive information, including customer account numbers, balances and ATM card numbers.

Most credit union employees whose e-mail is blocked by PortAuthority - the average is 20 to 25 unauthorized e-mails per day - are sending out sensitive data by mistake, Behnke says. But there have been instances where the bank caught employees forwarding customer information to brokers in order to make money.

"They did it because they were trying to get commissions," Behnke says, adding that these employees were terminated. PortAuthority "saved us from a lot of exposure," she says.

This insider-theft problem is similar to that facing Bank of America and Wachovia, which in late May acknowledged massive data leaks involving stolen account data on tens of thousands of customers sold by bank employees.

1 | 2 | 3 | 4 |  Next >
Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.
First Name
Last Name
E-mail
Zip Code