Slashdot Mirror

← Back to Stories (view on slashdot.org)

Securing Personal Data in Small Companies?

Posted by Cliff on from the what-can-you-do? dept.

lohmann asks: "I was recently paying rent in my apartment office when I noticed several of the rental agents frantically shaking a nearby keyboard. Being a geek, I intervened... and plugged the mouse back in. A barrage of performance questions ensued, so I checked their system for any issues. The results were astounding: Windows 95, no firewall, no AV software, and no backup software on a machine containing thousands of individuals personal information (including mine). I ran some utilities and removed dozens of viruses and instances of spyware. I voiced my concerns over security issues, but was told that 'there is no budget for such things' and that 'we haven't had any trouble in the past.' Have any of you run across similar instances of small companies refusing to protect your data? What can I do to convince them to secure the network?"

5 of 90 comments (clear)

  1. IT for rent arrangement? by mind21_98 · · Score: 4, Insightful

    Maybe your landlord will take you on as a system administrator for their network in exchange for a reduction in your rent. Both of you will benefit, and you'll make sure your personal information doesn't fall in the wrong hands. :)

    --
    US businesses that currently accept chip and PIN/signature
  2. Well... by FooAtWFU · · Score: 3, Funny

    Imagine what would happen if they opened up their Rent Due spreadsheet and read something like "If you are reading this, than I could have altered the amount I owe. You need better security. Kthxbye."

    --
    The World Wide Web is dying. Soon, we shall have only the Internet.
  3. Here's what you can do... by Spoing · · Score: 3, Insightful
    1. Find a huricaine.
    2. Step outside during the hurricane.
    3. Scream.

    You can't protect people from themselves.

    The only thing that works is mentioning that they may be liable -- they could be sued -- if they are found neglegent in not doing something to protect the data they have. Usually, this makes them concerned...and they still do nothing.

    --
    A firewall can not protect you from yourself. Turn off what you do not need. Do not use the firewall to do your work.
  4. You poor USians by samael · · Score: 4, Insightful

    If you lived in a reasonable part of the world then you could report them under Data Protection law. If only you didn't let your corporations run the country.

    --
    My Journal
  5. What I've seen by dtfinch · · Score: 3, Informative

    A lot of multiuser POS/Point Of Sale systems store their data on a network file share, in dbase or some other ISAM format. And on top of that, few do any sort of encryption of customer information, like credit card numbers. The result, anyone at a computer that can access the application can steal sensitive customer information and anything else with minimal effort.