Thursday, June 11, 2009

IT staff use their administration rights to snoop...

Twelve months after the Cyber-Ark “Trust, Security & Passwords” survey discovered that 33 percent of IT staff used their IT administration rights to snoop around networks to access privileged, corporate information such as HR records, layoff lists, customer databases and M&A plans, a repeat of the survey has discovered that the situation has escalated. Despite a sharp rise in data breaches and increased media awareness on the subject, the third annual Cyber-Ark survey reveals that 35 percent of IT workers now admit to accessing corporate information without authorization, while 74 percent of respondents stated that they could circumvent the controls currently in place to prevent access to internal information.


One of the most revealing aspects of the survey was found in the types and quantity of information employees would take with them if they were fired. As the economic climate has worsened, the survey found a sharp increase in the number of respondents who say they would take proprietary data and information that is critical to maintaining competitive advantage and corporate security.


Ominously, 1 in 5 companies admit having experienced cases of insider sabotage or IT security fraud. Of those companies, 36 percent suspect that their competitors have received their company’s highly sensitive information or intellectual property. Organizations are increasingly aware of the need to monitor privileged account access and activity, with 71 percent of respondents indicating that privileged accounts are partially monitored, while 91 percent of those who are monitored admitting they are “okay with their employer’s monitoring activities.” Despite these efforts, 74 percent of respondents revealed that even with the controls being put in place to monitor them, they could still get around them, making current controls ineffectual. www.cyber-ark.com.


One-to-Watch: Lanxoma, security software developed by Unity Solutions, restricts access to the root level of computer operating systems, grants limited time access permission to authorized users and records all activity while the authorized user is logged-on - so being a deterrent to the "insider threat." http://lanxoma.com


No comments:

Post a Comment