|
|
Like this article? PLEASE +1 it! |  |
|
How Thieves Physically Steal Your Data!
| Guest post by: Dovell Bonnett |
Article Overview: Basically, the theft of sensitive information from companies can happen in two ways: physical data breaches or online breaches of security. Physical identity theft refers to cases where the identity thief needs to get in close to their targets or to the information they are trying to obtain. These sorts of identity theft efforts include dumpster diving to search for documents which contain information such as account numbers, social security card or credit card numbers, addresses and like. Basically, any information which contains personally identifying information on a customer, vendor or employee is of use to identity thieves. Mail may be stolen or thieves may pose as company
 |
Free Download - Zappos Data Breach - Customer Safety and Security By Dovell Bonnett |
How Thieves Physically Steal Your Data!
asically, the theft of sensitive information from companies can happen in two ways: physical data breaches or online breaches of security. Physical identity theft refers to cases where the identity thief needs to get in close to their targets or to the information they are trying to obtain. These sorts of identity theft efforts include dumpster diving to search for documents which contain information such as account numbers, social security card or credit card numbers, addresses and like. Basically, any information which contains personally identifying information on a customer, vendor or employee is of use to identity thieves. Mail may be stolen or thieves may pose as company representatives over the phone in an effort to extract information from unwary employees.
Here are top fifteen ways in which corporate information is stolen by physical means:
1. Dumpster Diving – Someone will physically go through trash or recycling bins searching for employee records, addresses, credit applications and other documents containing personal information.
2. Card Skimming – There are devices which are capable of recording the information from a credit card or ATM card’s magnetic strip. These devices will be used by unscrupulous employees, particularly at restaurants and other businesses where the credit card is often out of the owner’s sight.
3. Purse and wallet theft – Purses and wallets are stolen from employees in the workplace.
4. Computer theft – This is a very common tactic as of late. Computers with unencrypted data will be stolen. Account information and other sensitive data is often stored on workstation computers; data thieves are well aware of this.
5. Unlocked File Cabinets – Companies need to keep files on their employees and customers. You need to make sure that access to these documents is restricted during the day and ensure that these cabinets are securely locked at night.
6. Bribing employees – Thieves will pay employees to steal sensitive information for them; this information is then used to commit fraud and identity theft.
7. Social engineering attacks – Thieves will pose as fellow employees, landlords or others who would normally be permitted access to sensitive information. People will often give out this information to someone they are led to believe is officially allowed to receive it.
8. Mail Theft – Incoming or outgoing mail will be stolen, often from the receptionist’s desk.
9. Office Burglary – A break-in is perpetrated to steal documents and computers containing sensitive data. The true purpose of the break-in will often be covered up with the theft of other equipment or vandalism.
10. Phone Pretexting – Similar to the web-based tactic of “phishing”, data thieves will call posing as employees of a legitimate company who need to update records; many employees will unhesitatingly give out personal information about employees when targeted with this technique.
11. Shoulder surfing – Usually done by employees or consultants, passwords will be observed as they are typed by someone looking over an employee’s shoulder.
12. Desk snooping – Thieves will search a desk or work station for notes containing passwords (commonly used in most offices).
13. Customer List Selling or Renting – Some companies will rent or sell their customer’s information sans their consent or knowledge to marketing companies. Almost inevitably, this information will end up in the hands of criminals at some point.
14. Help Desk Support – Help desk personnel often fail to realize that identity thieves may call them posing as an employee having a technical issue so they will often give out a new password to someone posing as an employee. Since as many as 50% of help desk calls are for password resets (according to the Gartner Group)
15. Bogus service calls – Data thieves will sometime pose as a repair person to obtain access to a computer network. The thief may install key loggers or backdoors, or use a packet sniffer to record network communications.
As a business owner, you need to be informed of the methods employed by data thieves to gain access to company information and implement good security practices such as shredding documents, using P.O. boxes and requiring regular security training for employees. While almost nothing will prevent data thieves from trying, having good security measures in place may lead data thieves to seek out an easier target.
While businesses will sometimes spend a fortune on non-disclosure agreements to make sure that business partners do not divulge company information, they will at the same time often fail to train their own employees how to protect the company from data theft.
Having a good security system in place is a must today; but if it is cumbersome on your employees they will circumvent it, leaving your data vulnerable to attack and a false sense of security. A balance has to be maintained and one of the best way to create balance it to keep employees informed about security and how a data breach can threaten their work environment.
Types of Shoplifters
Top 7 Stolen Car Parts
Top 7 Stolen Car Types
Data Security is Mandatory
The Latest Email Scam Is Nothing New
Preventing Physical Identity Theft
The Deal Really Could Be A Steal
Are These Bandits Causing Crime in Your Workplace?
Protecting Your Company From An Online Data Breach
Security Concerns with Cloud Computing Services
Data Loss - The Scariest Term in Business Today
Retail Security
How to control Shoplifting ? (Remedies to Shoplifting)
Retail Loss Growing Problem
Security issues in Wireless networks
Data Recovery Tools – Do They Work?
Entrepreneurs – Are You The Victim Of The Time Thieves?
My 3 Top Security Strategies for 2012.
Into the Mind of a Shoplifter
Joint Ventures: The Profit Power of Motivation
Article Tags: Access Smart, Donnell Bonnett, identity theft, password, security, threat
|
About the Author: Dovell Bonnett RSS for Dovell's articles - Visit Dovell's website Security does not have to be cumbersome to be affective. That is why our products are designed using state-of-the-art security technologies while focusing on ease-of-use and low cost-of -ownership. Previously, smartcard technology was only available to governments and Fortune 500 companies. Access Smart has turned that model upside down by matching the technology to the needs, no annual subscription fees and fully transferable licenses to keep security affordable to even high employee/student turnover businesses. The Access Smart team has over 50 combined years in the smartcard and security industry. By addressing the very real problems from a systems mindset, Access Smart delivers everything for a company to implement AaaS within hours and not months/years. Please contact Dovell Bonnett at Access Smart as to discuss how best to implement Authentication, Authorization and Non-Repudiation into your business. Access Smart - The Alternative to PKI. Click here to visit Dovell's website   Safeguard Business Data Value Advantage of Integrating Logical Access on an Employee ID Badge HP ProtectTools Solution Key 2011 Hacker Prevention Lessons ISSAs SoCal Security Symposium How Thieves Physically Steal Your Data |
Related Forum Posts
Re: Does Your Website Have a Robots.txt File?
- HI Carol,
Your robot file is correct; no lets work on your Page Titles & Meta Data.
Do you have access to create different page titles for each page of your website? Do you have your FTP information...please do not post it here but just let me know if you have access.
Jeff
Re: What I Enjoyed Reading This Week - June 11
- Hi Evan,
Thank you for the reading material. I look forward to the general release later this month as outlined in the 'Google Analytics To Add Search Query Data From Webmaster Tools' article.
Anything that helps us to understand maximise extra data from Google Analytics can only be of benefit.
regards,
Mal.
I want to start a CARTRIDGE business Need help
- Hi,
I am 20 years old, and looking to open up a cartridges business. I would like to know the markup on say.. HP Canon, Brother and other cartridges. It seems that Staples, office depot and other big companies sell them at regular retial price, I have come accross several websites, that sell them for reasonable prices. I am in contact with Tech Data (probably will open an account) I just want to know the general markup on cartridges? Thanks
Re: Make Friends...Literally BUILD them!
- [quote="GT Bulmer":s3cwnjgv]Data from Star Trek (TNG)! Now, [u:s3cwnjgv]that[/u:s3cwnjgv] would be TRULY awesome![/quote:s3cwnjgv]
Hi GT,
While creating more sophisticated artificial intelligence is a cool idea... I think it would do more harm than good. For starters, people are already becoming lazy enough (and having robots serve people would only lead to an even more sedentary lifestyle), while others won't develop the necessary social skills to function properly in society. For instance, if you're a quiet person, you may choose to befriend a robot instead of another human being.
Re: The Mobile Marketing
- Mobile Marketing involves communicating with the consumer via cellular (or mobile) device, either to send a simple marketing message, to introduce them to a new audience participation-based campaign or to allow them to visit a mobile website.
Some of the tools of the trade and a few of the concepts that will be featured in this Mobile Marketing 101 series are:
Multimedia Messaging Services (MMS)
Unstructured Supplementary Service Data (USSD)
Bluetooth, Wireless and Infrared
Mobile Internet and Social Media
Mobile Applications
Mobile connectivity not only enables people to connect to the Internet via a cellular telephone, PDA or other gadget, but also consolidates the different communication channels in a simple, yet effective, medium.
Cheaper than traditional means for both the consumer and the marketer - and easy enough for almost any age group to understand and engage with - Mobile Marketing really is a streamlined version of traditional eMarketing.
Share this article with your friends. Fund someone's dream.
Leave a comment below or share on the left and you'll help support entrepreneurs in Africa through our partnership with Kiva. Over $50,000 raised and counting - Please keep sharing! Learn more.
by: Leanne Hoagland-Smith, Chicago Sales Coach
Best Automated Forex Trading Strategy
Build Your List with Joint Venture Giveaway Events
May 2012 Top 100 Social Media Experts to Follow on Twitter
What to measure to be phenomenally successful in business
10 mistakes of media relations
Get advice & tips from famous business
owners, new articles by entrepreneur
experts, my latest website updates, &
special sneak peaks at what's to come!
The State of the Sustainable Furniture Industry
Starting a Business with Bad Personal Credit
Inspiration for troubled times
Email us your ideas on how to make our
website more valuable! Thank you Sharon
from Toronto Salsa Lessons / Classes for
your suggestions to make the newsletter
look like the website and profile younger
entrepreneurs like Jennifer Lopez.