Menu

Data Leakage

Data leakage is the theft of data from within an organisation to an external destination or recipient. The term can be used to describe data that is transferred electronically or physically. Threats usually occur via the web and email but can also occur via mobile data storage devices such as optical media, USB keys, and laptops. Regardless of size or industry, can be serious and your company can be fined, lose its reputation and lose a lot of money.  GNC Technology can provide tooling and processes to prevent DLP, Data Leakage Prevention.  We can also provide PenTesting (where we will try and breach your systems) to identify any vulnerabilities.

One in three data breach victims later go on to experience an identity crime.  Some hacker are chancers however some belong to sophisticated networks which make millions of pounds every year. Some of the worse breaches this year (2019) so far include Dunkin Donuts, OXO, Dow Jones had nearly 2.5million records for government officials and politicians in the US.  Equally Facebook have admitted that since 2012 it has not properly secured the passwords of nearly 600 million users.  That is scary.

It is not only hackers from outside of the business you need to worry about.  Staff can also gain unauthorised access to data held on computers and in 2018 an EE customer was stalked by an ex-boyfriend after he accessed her personal details without permission.  It is estimated that one in four breaches are carried out by employees.   This is when having tiered access for staff can help reduce the potential for internal breaches.

Incompetence by staff not trained on systems and processes is another threat which is why User Education is vital and good training a must for all new and existing employees.

Regardless of what method is used, data leakage could result in a hefty fine and loss of reputation. Could your company recover from either of these outcomes?

 

 

 

 

 

Whether is an accidental breach, a disgruntled employee or emails with malicious intent such as phishing attacks, you need to protect your company data.