Don't gamble with your company's investigation process.

Learn about i-Sight software today

Two Security Threats Every Organization Should Pay Attention To

Corporate security continues to be a growing concern for many organizations. The increased use of mobile devices and social networking creates a new round of risks organizations need to protect themselves from.

Posted by Joe Gerard on March 16th, 2011

Corporate security continues to be a growing concern for many organizations. The increased use of mobile devices and social networking creates a new round of risks organizations need to protect themselves from. As cybercriminals increase the complexity of their schemes, many organizations aren’t even aware that their systems have been compromised. Due to the complexity and scale of recent breaches, the costs of cybercrime continue to escalate.

According to the RSA:

“As the new decade opens, cybercrime is diverging down a different path as cyber attacks move beyond the financial services industry and malware makes a shift from targeting consumer desktops to employees in the enterprise.”

7 Million and Counting

Last week, Bloomberg released the article “Security-Breach Costs Climb 7% to $7.2 Million per Incident“. The article focuses on the findings from a recent report issued by information security research group Ponemon Institute LLC, and sponsored by Symantec. The article states:

“The cost to businesses of exposing data such as Social Security and credit-card numbers climbed 7 percent last year to an average of $7.2 million per incident. […] About 85 percent of all U.S. companies have experienced one or more data breaches, Ponemon said, and the figure may be larger because many don’t have the ability to detect when information has been exposed.”

FREE Investigation Report Template

Prepare thorough, consistent investigation reports with our free report template.

Download Template

Mobile Security

It’s safe to assume that cybercriminals won’t be backing down in 2011 – or anytime soon for that matter. I was recently reading the RSA 2011 Cybercrime Trends Report to find out what the RSA Anti-Fraud Command Centre reports will be major threats this year. Not surprising, mobile security issues have made their way onto the list. This assumption makes a lot of sense, as more people are doing business on their phones, laptops and other mobile devices.

Think about the information you send over your phone via text or email – as well as the information you have saved on your phone. For example, our company builds case management software for investigations. If people start sending information regarding investigations over email on their phone, they are going to want to ensure that there’s sufficient security to block the wrong people from getting their hands on it.

Corporate Security

Another trend identified in the RSA report is the switch from attacks targeted at the financial industry and individuals to attacks on organizations:

“Malware is becoming an increasing problem for organizations and government agencies around the world. What has typically been deemed an issue exclusive to consumers and financial institutions has suddenly made a crossover into the enterprise. This is being helped through a number of factors including employee mobility, the use of social networking sites, and user-driven IT. As a result, the corporate network is increasingly being exposed to malware, Trojans, advanced persistent threats (APT ) and other attacks that have the potential to lead to a data breach and compromise sensitive data.”

I’ve discussed in previous posts how organization-wide security threats come from both internal and external sources. As tools are built to increase information sharing and break down barriers within an organization, a world of security risk opens up. Managing and monitoring corporate security requires a strong commitment from everyone in an organization. Systems need to be updated regularly, IT personnel need to stay up to date on new security threats and trends and employees require ongoing communication and training to ensure they are doing their part to help out.

Joe Gerard
Joe Gerard

CEO, i-Sight

Spend my days showing off the i-Sight investigative case management software and finding ways to help clients improve their investigations. Usually working with corporate security, HR & employee relations, compliance and legal teams.

Visit Website

Book A Demo

To our customers: We’ll never sell, distribute or reveal your email address to anyone. Privacy Policy

Want to conduct better investigations?

Sign up for i-Sight’s newsletter and get new articles, templates, CE eligible webinars and more delivered to your inbox every week.