Posts Tagged ‘Data Theft’

SmartPhone Recovery Pro for Businesses: Retrieve and Recover Data From Any iOS or Android Device

April 17th, 2013 by Millie Smith

SmartPhone Recovery ProLast year MI5 chief Jonathan Evans warned businesses to not underestimate the level of industrial espionage taking place across the world. In today’s world, information is as valuable as cash. In fact corporate espionage costs UK businesses more than 800 million pounds each year. However, companies of all sizes tend to neglect one of the most common perpetrators of data theft – their employees.

Digital documents are portable, easy to copy and can be stolen by employees more easily than paper documents. This fact not only applies to the ease with which electronic files are stolen, but also to the sheer quantity taken. Smartphones – a dangerous combination of storage, data access and ubiquity – are an ideal method of stealing data, but surprisingly most companies do not address this threat at all.

Thanks to SmartPhone Recovery Pro, organisations that provide company-owned handsets to employees can monitor these devices to ensure that they are not being used inappropriately. Businesses can now interrogate iOS and Android devices in-house, at a fraction of the cost charged by forensic agencies.

While policies and technology will prevent casual data theft, determined employees will still steal data. If this occurs, the company will have to prove two things: that the employee took information without permission and that the theft caused harm. SmartPhone Recovery Pro can recover photos, text messages, browsing history, notes, calendar entries, call logs and more directly on any iOS or Android smartphone or tablet.

Companies that are not facing data theft issues can also benefit from SmartPhone Recovery Pro. According to the current Financial Services Authority (FSA) regulations banks, stockbrokers, investment managers and financial firms, must have their relevant voice conversations and other electronic communications recorded. This includes mobile phone calls and text messages. SmartPhone Recovery Pro can help the companies that are required to comply with FSA’s regulations, employers and employees alike, to backup existing and deleted text messages from their iOS and Android devices.

Software Paradise is an official SmartPhone Recovery Pro reseller, distributing this powerful tool at the best UK price – £43.50.

We can source any software for you! Please email us for more information or call us at +44 (0)1962 659168. Quotations submitted within an hour!

Tags: , ,
Posted in Data Theft, Mobile Communication, Mobile Security, News | No Comments »

Insider Data Theft: When Trusted Employees Go Trojan

October 5th, 2012 by Millie Smith

Data Theft

MI5 chief Jonathan Evans recently warned businesses to not underestimate the level of industrial espionage taking place across the world. In today’s digital and global world, information is as valuable as cash. In fact corporate espionage costs UK businesses more than 800 million pounds each year. However companies of all sizes tend to neglect one of the most common perpetrators of data theft: their employees.

Who is the Typical Data Thief?

In order to assess this often underestimated threat, Symantec recruited leading forensic psychologists to examine various factors leading to insider data theft, focusing on the behavioural and environmental issues that can cause theft of corporate data. The results, published on Symantec’s website, conclude that the average data thief is first – a current employee; second – male, third: 37 years old. The typical perpetrator  of data theft usually serves in technical positions such as programmer, engineer or scientist.

What are the Common Methods?

Digital documents are portable, easy to copy and can be stolen easier by employees than paper documents. This fact not only applies to the ease with which electronic files are stolen, but also to the sheer quantity taken.
According to a survey conducted by the Ponemon Institute, 29% of thieves say they steal corporate data when they leave a company. 24% of thefts were done using USB devices (sticks, MP3 players) and 18% used email. Smart phones – dangerous combination of storage, data access and ubiquity – are an ideal method of stealing data, but surprisingly most companies do not address this threat at all. The same goes for Instant Messenger services and FTP connections.
All of the methods described above cover intentional data theft by employees. However, an employee may also inadvertently expose confidential data by installing software on their computer. Over half of all respondents to the Ponemon Institute’s survey admitted to downloading personal internet software to their company computers. Many of these programs could contain a Trojan horse or other malware, which seeks out confidential data and copies it to data caches on the Internet for retrieval by unauthorised individuals.

How Can Businesses Prove Data Theft?

While policies and technology will prevent casual data theft, determined employees will still steal data. If this occurs, the company will have to prove two things: that the employee took information without permission and that the theft caused harm. This is where computer forensics steps in. Computer forensics experts can find and document instances of an employee’s improper conduct using specialised software, hardware and techniques.
Our top choice of contemporary forensic software is Internet Evidence Finder (IEF), developed by Magnet Forensics. IEF recovers data in more areas than any other solution, which include:

  • Entire logical or physical drives
  • Unallocated space/deleted data
  • Selected files including live RAM captures, network PCAP files, pagefile.sys, hiberfil.sys files (with full decompression) and more
  • Entire user-selected folders and subfolders
  • Special areas of the NTFS file system

Internet Evidence finder is easy to use and able to recover cloud artefacts, social networking pages, webmail applications, instant messenger clients, P2P file sharing applications, web browser artefacts. For more information about IEF please click here.

Tags: , , ,
Posted in Data Theft, Fraud, News | No Comments »

Another Security Warning

August 27th, 2010 by Millie Smith

This time, from the ISF (Information Security Forum), a leading independent authority on information security, who have just released their predictions for IT security in 2011.

it security

There is a shift predicted to highly organised cyber crime and targeted attacks.
It is important that we keep data safe now and plan for the future.

Chief executive Prof. Howard A. Schmidt at the ISF, states: “Even in today’s financial climate and increased threat environment, we are better placed than ever before to meet these challenges – as long as we have the resolve to strengthen and invest in security rather than reduce it.

There is still time to put security measures in place, and they needn’t cost a fortune. Common sense, combined with first line of defence physical security and second line basic encryption will go a long way in helping to keep information safe and reduce data loss.

Think about the disgruntled employee
Criminals will be approaching employees that have been affected by the recession for sensitive company data.

Don’t be a victim of Social Engineering
Think back to the Second World War and the nostalgic posters, ‘Loose Lips Might Sink Ships’ and ‘The Walls Have Ears’, and keep information to yourself.

Here are the predicted top ten risks:

  1. Criminal attacks
  2. Weaknesses in infrastructure
  3. Tougher statutory environment
  4. Pressures on off shoring / outsourcing
  5. Eroding network boundaries
  6. Mobile malware
  7. Vulnerabilities of Web 2.0
  8. Incidents of espionage
  9. Insecure user-driven development
  10. Changing cultures.

Jason Creasey, head of research at the ISF, has stated that the recession is accelerating the changes and advancements in IT threats: “…. fuelled by increasing staff turnover and dissatisfaction; along with the increased involvement of organised criminal groups that see online crime as a lucrative and low risk alternative to other nefarious activities.

Tags: , ,
Posted in Cyber Warfare, Data Theft, Email Security, Fraud, Mobile Communication, Mobile Security, News | No Comments »

Security Awareness is a Vital Defence

August 17th, 2010 by Millie Smith

Social Engineering – the inadvertent disclosure of confidential information by your employees, is every organisation’s weakest security link.

chain

Technology solutions, security policies, and operational procedures cannot work in isolation. People play a key role in an organisation’s security policy success.

Phishing, Pharming and SPAM are recognised examples of social engineering, both carried out for the purpose of profit, but there are more. These profiteers are always one-step ahead; creating and deploying new attacks that we are not yet aware of.

Regularly updated security software will deal with the majority of Phishing and Pharming threats and block the deluge of dodgy SPAM, but there are always those that slip through the net. Only users can decide if they are going to respond or not, and if they do, inadvertently hand over sensitive data.

Social Threats:
Social Engineers are practiced at manipulating employees into compromising corporate security, undermining human judgement so the victim is willing to concede network security, or even let them into an office building, without verifying their identity. They gather information by listening to conversations in public places (cafes, public transport etc), watching people enter passwords and PINs into laptops and at cash points, and even searching through the rubbish.

Awareness:

  • If employees don’t know about it, they can’t help!
  • Create a strong security culture within the organisation
  • Make employees aware of the threats and reinforce that security is everyone’s responsibility, not just that of the IT team
  • Point out to employees that they are the last line of defence against hackers who have turned to social engineering because they cannot breach the security systems any other way
  • Have regular training sessions/updates about the latest security threats.

Tags: , ,
Posted in Data Theft, Fraud, Mobile Security, News | No Comments »

Think ’security’ before you post anything on Facebook

August 12th, 2010 by Millie Smith

The wife of Sir John Sawers (the future head of MI6) had posted personal family information on Facebook.

“I am concerned,” said Nigel Trevena, IT Security Advisor at Software Paradise.

MI6 employees are bound by rigorous privacy rules, so the fact that these were broken is a worry in itself. Add to that the fact that this ‘incident’ occurred soon after Brown gave the go-ahead for setting up a UK Cyber Security Operations Centre, and it is no surprise that security professionals are once again rolling their eyes.

Tory Ken Clarke said that he doubts Britain’s enemies rely on Facebook for information (BBC News Online). Facebook might not be the first point of call when terrorists are doing their research, but using personal information can be an effective bargaining tool. Not only is the name and face of the future head of MI6 in the public domain, we have also seen the family album and know where they live. Protecting them has got to be a harder task as a result of the Facebook post.

I suggest you ask yourself these 10 questions before you decide to start broadcasting on a social networking site and potentially put yourself, your employer and your employment at risk:
1. Why do I need to broadcast this information?
2. Who can view what I am broadcasting?
3. Is what I’m planning to broadcast personal information?
4. Could someone use this personal information against me?
5. Am I broadcasting information that a friend/colleague/family member wouldn’t appreciate?
6. If I do decide to broadcast, have I ticked all the right boxes to ensure that strangers can’t view the information?
7. How do I ensure that others don’t post personal information on my page?
8. Am I sure I won’t use the site in company time and vent about work?
9. What would my employer think/do if I did this and they found out?
10. If I take a sick day, am I sure my friends won’t mention the beach trip on my page?

If you’re on the London network on Facebook, 200 million people can access your information. If you use MySpace or Bebo, anyone can view your page unless you turn off certain settings.

Is it worth the risk?

Tags: , ,
Posted in Data Theft, Fraud, News | No Comments »

« Older Entries