Slashdot Mirror


Google Copies Corporate Data to Google's Servers?

Penguinisto writes "According to Silicon.com, some CIOs have been seeing their company data being transferred to Google's servers as part of Google Desktop's functionality." From the article: "Mark Saysell, IT director at Coutts Retail Communications UK, said he is planning a network audit to find rogue installations, which will then be de-installed. New security measures will also be put in place to prevent further downloads. He said: 'Google has definitely over-stepped the mark and in turn is forcing IT departments to take a very draconian approach to machine security and web access.'"

1 of 295 comments (clear)

  1. Re:Ubersecret? by Reality+Master+101 · · Score: 1, Flamebait
    If you trust your employee base with docs that can't be leaked or copied into the wrong hands, why aren't you training them on software best practices and using filtering and scanning to make sure they aren't taking it off network?

    This is so naive I can't believe it. Sure, you can train people to do stuff, but people aren't network adminstrators, and shouldn't HAVE to be network administrators. They'll (naturally) assume that they can do anything they want with software authorized for their systems. Especially Sales People, who are notorious for ignoring (*cough*not understanding*cough*) whatever IT tells them to do. If you want security, you NEVER trust users to be smart. You put practices in place so they don't have to be smart (or call it "alert", if you prefer that word).

    Filtering and scanning can only do so much, depending on how Google is transmitting this information.

    Really, Isn't this a bit of an amature hour effect here? If your security is that lax you probably also let people connect USB mass storage devices to your desktops as well. This is unlikely to be your greatest security hole.

    Yes, I'm sure USB mass storage devices ARE forbidden as well. I'm also sure that P2P program are banned (where a dim bulb can easily accidently share the entire network drive with world). Exactly my point. Anything that a user can potentially abuse, either by accident or by willful stupidity, has to be banned if you want a secure network.

    --
    Sometimes it's best to just let stupid people be stupid.