About Me

Simon Hunt

Simon Hunt
Chief Technology Officer, Endpoint and Innovation
VP and CTO, Endpoint Security Simon Hunt has more than 20 years experience in software development, design and ...

Read More

Corporate Blogs

Feeds & Podcasts

Meet the Bloggers

Archive

Tags

12 Scams of Christmas, 2012 Virtual Sales Kickoff, Accredited Channel Engineer, ACE, ACE certification partner, Acquisition, Alex Thurber, Annual Partner Survey, Apple, ASIC, attacks, Australia, automobile, automotive, award, awards, beyond the PC, Biological Computer, Blackhat, C-SAVE program, Change Control, channel partner, Channel Partners, Channel Partner Town Hall, Channel Program, Channels Town Hall, chromebook, CIO Insomnia Project, Citrix, Civil War, cloud, Cloud computing, cloud security, Commercial/SMB, Commercial and Enterprise Deal Registration, Compliance, Consumer, consumerization, consumerization of IT, Continuing Education, Corporate Responsibility, critical infrastructure, cyberattacks, Cybercrime, Cyber risks, cybersafety, cybersecurity, cyber security awareness, Cyber Security Mom, cyberthreats, Database, database security, data breach, data center, data center security, Data Loss Prevention, Data Protection, Dave DeWalt, Dave Marcus, David Small, Deal Registration, Deep Command, DeepDefender, Deep Defender, DeepSAFE, DLP, Dmitri Alperovitch, education, Email & Web Security, Email Protection, embedded, EMEA, encryption, Endpoint Protection, Endpoint security suite upgrade, Enhanced Deal Registration, enterprise, epo, ePO DeepCommand, ePolicy Orchestrator, Family Safety, Focus, Focus11, FOCUS 2011, Foundstone, France, France Law, French Law, Gartner, Gavin Struthers, George Kurtz, Global Risk 2012 report, global threat intelligence, gold software support, google, government, GTI, Hackers, heidi klum, identity fraud, identity protection, IDF 2011, Incumbency Advantage Program, India, Initiative to Fight Cybercrime, innovation, integration, intel, intellectual property, intrusion prevention, iPad, IPv6, I Series, IT as a Service, IT Security market, Joe Sexton, julian Assange, kurtz, labs, law, LCEN, mac, Mac OS X, malware, Marc Olesen, mcaf.ee, McAfee, McAfee Application Control, McAfee Channel, McAfee Channel Partner, McAfee Cloud Security Platform, McAfee Data Loss Prevention, McAfee Employees, McAfee Firewall Enterprise, McAfee FOCUS, McAfee Identity Protection, McAfee Initiative to Fight Cybercrime, McAfee Labs, McAfee Labs Q3 Threat Report, McAfee Network Security Platform, McAfee Network Threat Response, McAfee Partner, McAfee Partner Learning Center, McAfee Partner of the Year Award, McAfee Partner Program, McAfee Partner Summit, McAfee Rewards, McAfee Security Management, mcafee total protection, McAfee Vulnerability Manager, Microsoft, Microsoft Security Bulletin, Mid-Market, Middle East, Mike Decesare, Mike Fey, Mobile, mobile applications, Mobile Data Protection, mobile malware, mobile security, MS12-020, M Series, national cybersecurity awareness month, National Cyber Security Awareness Week, NCSA, Network Security, Next Generation, next generation data center, Night Dragon, NitroSecurity, Nitro Security, north america, OCTO, Operation Aurora, Operation Shady RAT, PARC, Partner Acceleration Resource Center, Partner Care, partners, Partner Summit, Patch Tuesday, Paul Otellini, PCI, PCI DSS, Pemberton, peter king, policies, president obama, privacy, Products, promotion, Public Sector, quarterly threat report, regulation, regulations, Renee James, risk, risk and, Risk and Compliance, Risk Management, Riverbed, ROI, RSA, RSA 2010, s, SaaS, SaaS Monthly Specialization, safe, SAIC, Saudi Arabia, SCADA, scareware, security, Security-as-a-Service, Security Connected, security management, short url, SIEM, Small Business, Smart Grid, smartphones, SMB, SMB Advisor Tool, SMB Extravaganza, SMB Specialization, social media, social networking, social networks, social responsibility, solid state drive, spam, Steve Jobs, Stop.Think.Connect, Support, targeted attacks, TCO, Tech Data, technology trends, Telecommunications, The VARGuy, threat reduction, thurber, Todd Gebhart, Trust and Safety, twitter, UAE, Ultrabook, Underground Economies, United Arab Emirates, Vanity Fair, Virtualization, Virtual Sales Kickoff 2012, virus, VMworld 2011, WAN, Web 2.0, web security, wikileaks
Corporate : CTO :

Got (wiki)Leaks? Call a McAfee (DL)Plumber…

Tuesday, November 30, 2010 at 5:10pm by Simon Hunt
Simon Hunt

With the current news fracas regarding the latest WikiLeaks disclosures, which have reached a pretty interesting juncture with Congressman Peter King asking for WikiLeaks and it’s founder Julian Assange to be declared “Terrorists and spies”, I thought I’d add my fire to the flame and say quite bluntly –

McAfee can help you protect your information!

Yes, you would not believe it but monitoring for inappropriate disclosure of sensitive information is bread-and-butter stuff to us.

  • Want to stop users emailing sensitive docs?
  • Want to simply monitor the movement of sensitive information?
  • Want to stop people printing sensitive information?
  • Want to stop users copying sensitive information to removable devices
  • Want to stop users posting sensitive information in IM messages?

All these things (and many more) can be controlled and monitored easily using technology the industry  calls “Data Leakage Prevention” – DLP for short. There’s software you can install on your users machines to monitor and protect them from accidentally leaking information, there’s hardware you can install on your network which acts like “Tivo” – monitoring recording and classifying everything that goes over the wire, and of course more devices which you can use to mine stored structured and unstructured data so you can discover where data meeting particular criteria is kept.

Do you know something else? None of this stuff is bleeding edge – sure, it’s kept up to date with feeds and speeds, but this technology is years old, mature, and ready for prime time.

With the McAfee tech (I can’t speak for anyone else’s solutions), you can “turn the dial down” so the system is invisible and passive – just sitting there watching for odd and suspicious behavior, alerting you when things happen. You can also crank the dial to “volume 11” though and get it to actively block things as well if you like – it’s up to you.

The best thing though, and this IS unique to McAfee, is that our solutions are continuously monitoring, classifying and capturing EVERYTHING that goes through them, so, even though you may not have a “rule” or “policy” to block some specific issue or leak today, if you ever find your sensitive information out in the wild you could query the McAfee DLP system and discover exactly how/who/when it got out – it KNOWS what happened in the past, maybe for several months or more.

Now, wouldn’t that be a little discouraging for your potentially-leaky users to know?

I’m not claiming that DLP as a technology, or the McAfee DLP solutions cover every possible way of leaking information – after all, once it’s in someones head you’ve lost control partially at least, BUT, in our experience most leaks happen through traditional, easy to control channels – people email stuff out from work to the wrong people (by mistake, or deliberately), they copy data to removable media plugged into their work computer, they print stuff out at work etc.

To put some numbers around this problem, according to DataLossDB.org around 13% of leaks are caused deliberately by insiders, compared to 32% occurring through accidental insider use.  This compares to 42% of leaks and breaches being caused by outside attack.

There are other complementary solutions of course such as full disk encryption to protect laptops, hard disks, memory sticks etc when they move around to make sure that if they are lost or stolen, the finder cannot see the information on them – yet another layer of protection for you, your company, and your customers. Add DLP to the mix and you really do start reducing the risk of that insider accidental/deliberate leakage.

I’ll leave you with a quote from an article by Rickard Sisk of the Daily News Washington Bureau:

At Obama’s direction, the White House Office of Management and Budget sent out a memo to all agencies to make sure their workers can only see what they have to see to do their jobs.

OMB Director Jacob Lew said there will be a zero-tolerance policy under the new directive.

“Any unauthorized disclosure of classified information is a violation of our law and compromises our national security,” according to reports.

You can find some interesting videos on the McAfee Solutions on Youtube – for example: Network DLP, Encryption, Removable Media Protection

Bookmark and Share

Tags: , , , , , , , ,

Comments are temporarily suspended due to blog maintenance, comments will be available again from Monday 21st May.