Slashdot Mirror


Employees Are The Biggest Security Threat

blankmange writes "BBC News is reporting that the employees of a company pose the biggest threat to security. "Digital cameras, MP3 players and handheld computers could be the tools that disgruntled UK employees use to sabotage computer systems or steal vital data, warn security experts. The removable memory cards inside the devices could be used to bring in software that looks for vulnerabilities on a company's internal network. The innocent-looking devices could also be used to smuggle out confidential or sensitive information." Unfortunately, this is not news, but it is amazing how slowly the general public, corporations included, comes around on issues like these. "

9 of 328 comments (clear)

  1. it's easier than that to cause harm... by Hooya · · Score: 5, Funny

    call the BSA hotline.

  2. Reminds me of NSA security alert on "Furby" toys by Seth+Finkelstein · · Score: 5, Funny
    This reminds me of the famous NSA "Furby Alert"
    As harried parents scrambled in the weeks before Christmas to get their hands on these homely, high-tech cyberpets that supposedly repeat what they hear, the supersecret spy agency put out a "Furby Alert" on its internal intranet in early December and banned the Furby from Fort Meade.

    "Personally owned photographic, video and audio recording equipment are prohibited items. This includes toys, such as 'Furbys,' with built-in recorders that repeat the audio with synthesized sound to mimic the original signal," the Furby Alert warned NSA workers. "We are prohibited from introducing these items into NSA spaces. Those who have should contact their Staff Security Officer for guidance."

    Sig: What Happened To The Censorware Project (censorware.org)

  3. In other news... by joebp · · Score: 5, Funny
    • Computers run on electricity.
    • People use the internet to do bad things.
    • Pro-wrestling is faked.
    • The news media is biased.
    • The members of all boy-bands are gay.
    • Britney does not want you.
    • Disgruntled employees can steal your valuable corporate information.
    1. Re:In other news... by Psiren · · Score: 4, Funny

      Britney does not want you.

      Oh, thank God for that. It *was* a bad dream after all... ;)

  4. Re:And this is news? by Zocalo · · Score: 5, Funny
    500megs of files? It doesn't even take that. I've seen this happen with an "Out of office" response email. The luser had setup his Exchange account to send an out of office reply, but forgot to remove an automatic CC to his 10meg home email account.

    Naturally the home account filled up pretty quickly at which point the remote and local servers began a game of ping pong betwen "Out of office" and "Mailbox is full" emails. Since we are an ISP and his 10MB account was on another large ISP this game of ping pong was going faster than a world champion on speed. As a side effect it also resulted in a DoS on the two mail servers as log files and message logs grew out of all proportion...

    So it just goes to show; employees can cause grief even when they don't mean to.

    --
    UNIX? They're not even circumcised! Savages!
  5. So remember managers... by Irvu · · Score: 5, Funny
    • Cost of a new overhead camera to spy on employees: $700
    • Cost of metal detectors at the doors and the guards to staff them: $10,000 yr.
    • Cost of keystroke loggers, internet screening software and the techs to track them: $50,000yr.
    • Cost of employees to monitor the guards and techs: $30,000 yr.
    • Living under a cloud of suspicion and paranoia and driving all of your employees away through fear, distrust, and low morale: Priceless

    There's some things money can't buy, for the rest; raid the retirement fund.
  6. FUD Marketing by Morris+Schneiderman · · Score: 4, Funny

    The "biggest threat to security" is almost always the folks working in the Security Department. This has been the case for more than 50 years.

    There could be a good research paper here. Is it because these folks have too much idle time on their hands? Is it because the line of work keeps them focusing on negative activities? Is it because they are exposed to the company's weaknesses and become tempted by them? Is it because this line of work attracts thieves? Is it because companies use the 'it takes a thief to catch a thief' philosophy? Do 'Heads of Security' purposely hire thieves to keep levels of theft up, so as to justify bigger budgets? Outsourcing 'Security' does not solve the problem, it just makes it into someone else's profit center.

    My father tells the story of a guy working at an auto assembly plant who took home an entire car -- piece by piece!

    This 'article' is not News. Look at it's source. It's a marketing piece. Slashdot fell for someone's FUD marketing. I know it's Monday morning, but still...

  7. Re:Im glad this isnt news, true nonetheless by Ivan+Raikov · · Score: 4, Funny

    You seem to write at a 3rd or 4th grade level..

    Well, that's management material right there! You wouldn't want the person in charge of making decisions to articulate their thought clearly and precisely, would you?

    :-)

  8. Re:or.. by csbruce · · Score: 4, Funny

    You could just bring a floppy/cd with you

    These items and memory sticks, digital camers & mp3 players can be hidden in people's clothing, and therefore, the real solution is to disallow all clothing on the premises of the business. People could also hide such items up their butt, so you'll need to check there too before allowing employees admittance. (Well, maybe not the CD...)