Can You Stop Former Employees Taking Your Data?

It’s a good question and one that many organizations don’t think about thoroughly.  You take a lot of time onboarding an employee by doing background checks, checking references, and determining what information systems and data access the person needs to do her or his job.  You may have a comprehensive provisioning system that grants access to all applications and data. …

Fasoo Hits Nerve with Message of Security, Governance and Productivity at RSA 2017

After two days at the 2017 RSA Conference in San Francisco, it looks like Fasoo’s message of Security, Governance and Productivity is hitting a nerve with security professionals, analysts, executives and other attendees.  As the regulatory and business climate change to overcome constant threats to businesses and the data they use to drive profitability, companies are looking for a more …

Sometimes Employees Are Just As Much of a Risk as Malicious Attackers

Data from our Ponemon study, “Risky Business: How Company Insiders Put High Value Information at Risk,” was recently cited in Tara Seal’s Infosecurity Magazine article, “US House Recommends ‘Zero-Trust’ Model for Insider Data Access.” The article referenced the statistic that 72 percent of surveyed organizations are not confident in their ability to manage or control employee access to confidential documents …

Fasoo and Ponemon Study Reveals Employees Highest Security Risk to Organizations

Fasoo just released the results of the security industry’s first look at how confident organizations are about protecting intellectual property and other high value information.  In the latest Ponemon Institute survey titled, “Risky Business: How Company Insiders Put High Value Information at Risk”, 72 percent of organizations are not confident they can manage and control employee access to confidential documents …

SEC Stresses Data Security After Settlement with Morgan Stanley

The Securities and Exchange Commission (SEC) told financial firms they must take data security more seriously in the wake of a settlement with Morgan Stanley over the theft of customer data by a former employee.  In 2015, the employee transferred information from approximately 730,000 client accounts to his personal server.  He copied names, addresses, account numbers, investment information and other …

Data-Centric Security and Pulaski County Special School District Data Breach

This week news broke about a data breach within the Pulaski County Special School District. The breach resulted in more than 3,000 employee’s personal information being compromised. It is reported that a PCSSD employee was responsible for the compromise of thousands of current and former employees’ personal information and she has resigned from her position as of February 2016. Notices …

RSA 2016 Attendees Excited About Fasoo Data Security Framework

This year’s RSA Conference in San Francisco gave security professionals, executives and other attendees a lot to choose from as they tried to help their organizations prevent cyberattacks and mitigate the risk of insider threats.  Apple’s current flap with the FBI on encryption was a big point of discussion throughout the event, including during keynotes.  Amit Yoran, the President of …

We Spend So Much On IT Security, Why Are We Still Vulnerable?

If you believe getting breached is inevitable, you’re right.  Businesses that think it won’t happen to them are either living with their heads in the sand or just don’t understand the information security landscape today. The battle lines are both external and internal as organized hackers and malicious or careless insiders continue to be a threat to your most sensitive …

Stop Unauthorized Use of Confidential Data

Former Morgan Stanley Financial Adviser Guilty In Connection with Data Breach A former employee of Morgan Stanley pleaded guilty to stealing confidential data from about 730,000 customer accounts. He copied names, addresses, account numbers, investment information and other data to his home computer so he could work on it. While improperly accessing the information, he was interviewing for a new …

It’s a Bad Week for the Healthcare Industry

It definitely has been one of the worst weeks for data breaches in the healthcare industry. We went from big news from Worcester, MA with UMASS Memorial Medical Group (UMMG) reporting an insider data breach of about 14,000 patient health information, to probably the biggest not healthcare data breach but potentially the biggest breach of the year with up to …