Data Leakage Prevention Paul A. Henry MCP+I, MCSE, CCSA, CCSE, CISSP-ISSAP, CISM, CISA, CIFI, CCE Forensics & Recovery LLC

Transcription

1 Data Leakage Prevention g Paul A. Henry MCP+I, MCSE, CCSA, CCSE, CISSP-ISSAP, CISM, CISA, CIFI, CCE

2 From A Historical Perspective The Identity Theft Resource Center (ITRC) put the number of publicly reported data breaches in the United States at: 446 for for for 2005

3 Current 2008 Stats The Identity Theft Resource Center (ITRC) reported that as of August 22nd, 2008 the number of reported breaches in 2008 had surpassed those reported in 2007 with 4 months still left in the year.

4 Current 2008 Stats Current data contained within the ITRC report dated 11/4/2008 reveals that with still a month to go in 2008 we have experienced 552 breaches reported and 30,498,740 records have been exposed

5 2008 Stats From PRCH The Privacy Rights Clearing House is another great source for reported data breach statistics Since January 1, 2005 the TOTAL number of records containing sensitive personal information involved in security breaches in the U.S. 245,277,093,

6 Who Didn t Hear about TJX

7 But Did You Know The people p who started the breach opened up the back of those terminals and used USB drives to load software onto those terminals, says the source. In a March filing with the Securities and Exchange Commission TJX acknowledged finding suspicious software on its computer systems.

8 We May Be On To Something The USB drives contained a utility yprogram that let the intruder or intruders take control of these computer kiosks and turn them into remote terminals that connected into TJX s networks, according to the source. The firewalls on TJX s main network weren t set to defend against malicious traffic coming from the kiosks, the source says. Typically, the USB drives in the computer kiosks are used to plug in mice or printers.

9 Hmmmmmm Another One

10 . and Another.

11 . and Another.

12 . and Another.

13 . and Another.

14 The USB Malware Factor

15 Finally Some Recognition USB Data Loss facts: 60% of confidential data resides at the endpoint (IDC) 52% of companies surveyed have suffered data loss via USB drives and other removable media (Forrester) Over 70% of security breaches originate from within (Vista Research) USB drives have become the Achilles Heal of Data Leakage

16 USB An Underrated Threat

17 17 11/09/08 More Then Just A USB Issue ing confidential document to a competitor Printing financial documents Copying customer record files to a USB Drive Sending internal documents via Hotmail ing confidential data via guest laptop on corporate net Sending via Blackberry

18 Understand Your Exposure The Risk 1:400 messages contain confidential information 1:50 network files are wrongly exposed

19 Business Drivers Loss of Customer & Confidential Data Credit Card Records Social Security #s Financials Breach of Corporate Governance HIPAA EU Data Protection Directive SOX GLBA SB 1386 Basel II Loss of Intellectual Property Patents Source Code Trade Secrets

20 Business Challenges Accidental and malicious means Anywhere: at work, at home, and on the road All parts of the network: servers, databases, managed and unmanaged endpoints No visibility and control to prove data security measures

21 Data Loss Scenarios Copy Paste Malicious Document Printing External Storage Device Malicious Webmail Sending via guest laptop Sending via Blackberry