You and your business are worth a lot of money, whether your bank accounts show it or not. The goldmine lies in your data, and everyone wants it. Competitors want to hire the employee you just fired for the thumb drive full of confidential files they smuggled out. Data thieves salivate over your Facebook profile, which provides as a “how to” guide for exploiting your trust. Cyber criminals are digitally sniffing the wireless connection you use at Starbucks to make bank transfers and send “confidential” emails.
Every business is under assault by forces that want access to your valuable data: identity records, customer databases, employee files, intellectual property, and ultimately, your net worth. Research is screaming at us-more than 80% of businesses surveyed have already experienced at least one breach (average recovery cost: $6.75 million) and have no idea of how to stop a repeat performance. These are clear, profit-driven reasons to care about who controls your data.
Here are 5 Information Espionage Hotspots that your business should address now:
1. Lousy training. One of the costliest data security mistakes I see companies make is attempting to train employees from the perspective of the company. This ignores a crucial reality: All privacy is personal. In other words, no one in your organization will care about data security until they understand what it has to do with them.
Strategy: Give your people the tools to protect themselves personally from identity theft. In addition to showing them that you care (a good employee retention strategy), you are developing a privacy language that can be applied to business. Once they understand opting out, encryption and identity monitoring from a personal standpoint, it’s a short leap to apply that to your customer databases and intellectual property. See the video above for an example of bridging the worlds of personal privacy and corporate data security.
2. Human weakness. The root cause of most data loss is not technology; it’s a human being who makes a costly miscalculation out of fear, obligation, confusion, greed or sense of urgency. Social engineering is the craft of extracting information out of you or your staff by pushing buttons that elicit automatic responses.
Strategy: Immunize your workforce against social engineering and poor decision making. Fraud training teaches your people how to handle requests for login credentials, passwords, employee and customer data, unauthorized building access and an office full of information whose disappearance will land you on the front page of the newspaper. The latest frontier that thieves are exploiting is your employees’ social networks, especially Facebook and LinkedIn. It is imperative that you have a well-thought-out, clearly communicated social networking policy that minimizes the risks of data leakage, reputation damage and trust manipulation.
3. Wireless surfing. There are two main sources of wireless data leakage: the weakly encrypted wireless router in your office and the unprotected wireless connection you use to access the Internet in an airport, hotel or café. Both connections are constantly sniffed for unprotected data being sent from your computer to the web.
Strategy: Have a security professional configure the wireless router in your office. Here is your laundry list of things to ask her to do. She will understand the terminology: Utilize WPA-2 encryption or better; Implement MAC-specific addressing and mask your SSID; While she’s there, have her do a security audit of your network; To protect your connection while surfing on the road, purchase an encrypted high-speed USB modem from one of the major carriers (Verizon, Sprint, AT&T) and STOP using other people’s free/fee hotspots.
4. Inside spies. Chances are you rarely perform a serious background check before hiring a new employee. That is short sighted, as most of the worst data theft ends up being an “inside job” where a dishonest employee siphons information out a “digital door” when no one is looking. Many employees who are dishonest now were also dishonest in the past, which is why they no longer work for their former employer.
Strategy: Invest in a comprehensive background check using a product like CSIdentity.com’s SAFE before you hire instead of wasting much more money cleaning up after a thief steals valuable data assets. Follow up on the prospect’s references and ask for some that aren’t on the application. Investigating someone’s background jump starts your intuition and discourages dishonest applicants from the outset.
5. Mobile data. In the most trusted research studies, 36-50% of data breach originates with the loss of a laptop or mobile computing device (smart phone, thumb drive, etc.). Mobility, consequently, is a double-edged sword; but it’s a sword that we’re probably not going to give up easily. Utilize the security professional mentioned above to implement strong passwords, whole disk encryption and remote data wiping capabilities. In addition, physically secure this goldmine of data down when you aren’t using it.
Strategy: Utilize the security professional mentioned above to implement strong passwords, whole disk encryption, and remote laptop-tracking and data-wiping capabilities. Set your screen saver to engage after 5 minutes of inactivity and check the box that requires you to enter your password upon re-entry. This will help keep unwanted users out of your system. Finally, lock this goldmine of data down when you aren’t using it.
Your espionage countermeasures don’t need to be sophisticated or expensive to be effective. Targeting the hotspots above is a savvy, incremental way to keep spies out of your profit margins. But it won’t start working until you do.
About the Author:
John Sileo speaks professionally to organizations that wish to avoid the costs associated with identity theft, data breach, social media exposure and insider theft. His satisfied clients include the Department of Defense, Blue Cross Blue Shield, the FDIC, Pfizer and hundreds of corporations of all sizes. Learn more about his entertaining and effective presentations at www.ThinkLikeaSpy.com or contact him directly on 800.258.8076.
Magnificent goods from you, man. I have understand your stuff previous to and you are
just too magnificent. I actually like what you have
acquired here, certainly like what you are stating and the
way in which you say it. You make it enjoyable and you still take care of to
keep it sensible. I can not wait to read far more from you.
This is actually a tremendous web site.
Hey I know this is off topic but I was wondering if you knew of any widgets I could add to my blog that automatically
tweet my newest twitter updates. I’ve been looking for a plug-in like this for quite some time and was hoping
maybe you would have some experience with something like this.
Please let me know if you run into anything. I
truly enjoy reading your blog and I look forward to your new updates.
Hey there are using WordPress for your blog platform? I’m new to the blog world but I’m trying to
get started and create my own. Do you require any
html coding expertise to make your own blog? Any help would be really appreciated!
I do accept as true with all of the ideas you have presented in your post.
They are very convincing and will certainly work.
Still, the posts are very quick for beginners.
Could you please lengthen them a little from
next time? Thanks for the post.
Pretty section of content. I just stumbled upon your site and in accession capital to assert
that I get in fact enjoyed account your blog posts.
Any way I’ll be subscribing to your feeds and even I achievement you access consistently quickly.
What a stuff of un-ambiguity and preserveness of valuable knowledge on the
topic of unexpected emotions.
Hey! Do you know if they make any plugins to help
with Search Engine Optimization? I’m trying to get my blog to rank for some targeted
keywords but I’m not seeing very good results. If you know of any please share.
Thanks!
I have learn a few excellent stuff here. Definitely value bookmarking for revisiting.
I wonder how much attempt you place to make any such wonderful informative
site.
Hmm it looks like your website ate my first comment (it
was extremely long) so I guess I’ll just sum it up what I had written and say, I’m thoroughly
enjoying your blog. I as well am an aspiring blog blogger but I’m still new
to everything. Do you have any tips and hints for beginner blog writers?
I’d certainly appreciate it.
I think this is among the most important info for me.
And i am glad reading your article. But wanna remark on some general things, The website style is perfect, the
articles is really nice : D. Good job, cheers
Hey there! I’m at work surfing around your blog from my new apple iphone!
Just wanted to say I love reading through
your blog and look forward to all your posts! Carry
on the great work!
I visited multiple web sites however the audio feature for audio songs present at this web site is genuinely wonderful.
When someone writes an paragraph he/she retains
the idea of a user in his/her mind that how a user can know it.
Thus that’s why this post is perfect. Thanks!
Hi there, You have done a fantastic job. I’ll certainly digg it and
personally recommend to my friends. I’m confident they will be benefited from this site.
Everyone loves what you guys tend to be up too. Such clever
work and reporting! Keep up the awesome works guys I’ve added you guys to
my own blogroll. natalielise plenty of fish
This is very interesting, You’re a very skilled blogger.
I have joined your rss feed and look forward to seeking more of
your wonderful post. Also, I have shared your web site in my social networks!
Do you have a spam issue on this blog; I also am a blogger, and I was curious about
your situation; we have developed some nice practices and we are looking to trade strategies with others,
why not shoot me an e-mail if interested.
What’s Going down i am new to this, I stumbled upon this
I have discovered It positively useful and it has aided me out loads.
I hope to give a contribution & assist different users like its
helped me. Good job.
Hey are using WordPress for your site platform? I’m new to the blog world but I’m trying to
get started and create my own. Do you require any coding knowledge
to make your own blog? Any help would be really appreciated!
Wow! This blog looks exactly like my old one! It’s on a totally
different subject but it has pretty much the same layout and design. Superb choice of colors!
Hey! Do you know if they make any plugins to safeguard against hackers?
I’m kinda paranoid about losing everything I’ve worked hard on. Any suggestions?