Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec

Florida agency employee admits systematic data theft.

Lumension Security : 04 December, 2007  (Technical Article)
Lumension Security warns of the ease with which data can be siphoned from unprotected databases in light of admission by consumer information agency of selling customer records over a period of years.
A senior database administrator for a consumer reporting agency, the Fidelity National Information Services, in Florida has admitted stealing more than 8.4 million account records and selling them to a data broker for $580,000 over five years.

Alan Bentley, VP International, Lumension Security, a leading security management company, is concerned by the ease at which the administrator was able to siphon the consumers' sensitive data and advises companies to take steps to protect themselves against this kind of threat.

"Data theft is becoming more and more common across the globe and the Fidelity National Information Services case is just another example of how easy it is to remove sensitive data from an unprotected corporate network.

"William Gary Sullivan's potential 10 year prison sentence and $500,000 in fines will certainly act as a deterrent to other tempted employees. However, prevention is better than the cure. Most data leaks occur at the endpoint and unmanaged removable media and applications can easily open the floodgates for data to escape into the wrong hands.

"By simply managing the data flowing to and from network endpoints, and auditing the use of applications and devices, this can be avoided. Employing a 'known-good' state allows only authorised applications and devices on to a network, and governs the extraction of data, decreasing the threat.

"Companies need to take this threat seriously and need to combine technology with clear strategies and policies to prevent security breaches. To do otherwise could leave consumer data at risk and put a company's reputation on the line. The technology is out there to prevent future William Gary Sullivan's stealing sensitive data."
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo