From Technology
MY PAPER TUESDAY JUNE 24, 2008
Companies must learn to up security levels and restrict access to sensitive, vital materials
BEWARE – your company’s IT staff are busybodies who are checking your confidential information.
According to research from tech firm Cyber-Ark Software, nearly half of IT workers have admitted to snooping around networks to look at confidential information.
PCWorld.com, in reporting Cyber-Ark’s findings, quoted the company’s British director Mark Fullbrook as saying that “when it comes down to it, IT has essentially enabled snooping to happen”.
He added: “It’s easy – all you need is access to the right passwords or privileged accounts and you’re privy to everything that’s going on within your company.” The survey also revealed that privileged passwords get changed very infrequently.
Thirty per cent admitted privileged passwords were only changed every quarter, while 9 per cent claimed they never changed privileged passwords, giving indefinite access to those who know the passwords, even after they have left an organisation.
PCWorld.com quoted Mr Fullbrook: “As we have seen many use their privileged passwords without having to seek authorisation – and if the price is right – what’s stopping them from choosing to trade information to the highest bidder.”
“Companies need to wake up to the fact that if they don’t introduce layers of security and tighten up who has access to vital information by managing and controlling privileged passwords, snooping, sabotage and hacking will continue,” he added.
If Mr Fullbrook’s words are not heeded, highly sensitive information such as merger plans, the CEO's e-mails, company accounts, marketing plans, legal records and R&D plans could well fall into the wrong hands.
No comments:
Post a Comment