Sensitive information at risk after council loses unencrypted USB drive

February 23, 2011 CyberArk

by Josh Arrington

The Information Commissioner’s Office (ICO) has found Cambridgeshire County Council in breach of the Data Protection Act, after the council lost an unencrypted memory stick, contrary to policy, containing sensitive data relating to vulnerable adults.

What’s interesting, and in many ways particularly disappointing, in this story is that the council had only just undertaken an internal campaign promoting its encryption policy. The fact that so soon after this a member of staff was willing to completely ignore the policy really indicates just how far organisations still have to come in educating workers on the importance of information security.

On top of this, it’s fair to say that using USB drives for such important information at all should be out of date. Technology has sufficiently advanced that companies should be looking beyond such devices – which have proven far too often to be vulnerable in nature.

What organisations must look for is a secure file transfer solution that removes sensitive information from such devices and keeps them stored centrally and securely. This would go a long way to mitigating the risk of losing data when mobile devices inevitably do go missing.

See Full Article

Previous Article
Privileged Conversations at RSA: From the Cloud to the White House
Privileged Conversations at RSA: From the Cloud to the White House

by Adam Bosnian As it has every year since its inception, the RSA Conference drew a large number of securit...

Next Article
Celebrating 20 Years: RSA Conference Keeps on Rollin’
Celebrating 20 Years: RSA Conference Keeps on Rollin’

by Josh Arrington Leading up to the RSA Conference, we in the security industry tend to be acutely aware of...

Gartner Names CyberArk a Leader in the 2021 Magic Quadrant for PAM

Download Now