To protect against this, organizations need to have in place a comprehensive Web filtering solution to monitor network use and prevent access to unsuitable sites and malicious URLs. This gives the organization greater visibility of network usage, reduces risk, ensures regulatory compliance and helps to guarantee ongoing business continuity.
USBs: a data MP3 for all
With the rise in the use of USB devices such as MP3 players, memory sticks and digital cameras comes another threat – that of pod slurping. A staggering 75% of employees questioned in the survey use USB devices on their company PC or laptop - portable media storage devices which can be used to take confidential company information and business data off the network.
Organisations need a clear and robust acceptable usage policy set up to protect its intellectual property, but it’s essential to back this up with an equally robust security solution capable of filtering and monitoring employee activity.
The right filtering tool will support your company and help to protect its assets against the potential threats posed by the latest technological developments and media trends, without impacting on business operations and productivity.
The latest tools control and block outbound USB data connections as part of a comprehensive user management solution, and can offer granular security and access levels, segmented by user and by PC, to guarantee an optimum balance between network security and business productivity.
Does out of the office = out of control?
The study found that laptop users consistently displayed greater levels of risky behavior – 11% download porn, 34% download music, 20% play games; all greater proportions than for desktop users. This represents a significant threat, and is a frequent gateway through which malware can enter the corporate network.
Greater risk needs greater precautions and protection, and organizations must ensure that all security policies, filtering software and USB controls are as rigorously applied to company laptops as they are to office-based PCs. Naturally, at the same time, it’s also essential that errant laptop users and mobile workers are made aware of Acceptable Usage Policy, and what exactly they can and cannot access over the corporate network.
Security: Whose job is it anyway?
The global security survey also revealed that security updates all too often fall through the gaps, and that there was considerable uncertainty as to whose role it was to implement security checks and updates.
62% of respondents believe the responsibility for IT security lies squarely with the IT department, whereas the bleak reality is that only 35% of IT departments proactively carry out any upgrades to anti-spyware software, leaving the employee and company vulnerable to attack.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.