Irreverence

posted on 10 April 2008 16:14

A SanDisk-commissioned survey of business users and IT managers showed that 70 percent of respondents' organisations didn't have a flash drive security policy banning copying corporate data or they simply didn't know about it. A fifth of respondents didn't know flash drives were unsafe.

The potential for data leaks through unsecured flash drive use is high, either though deliberate or accidental actions. A tenth of the respondents had found mislaid flash drives in public places

Gil Mildworth, Senior Director of Marketing for SanDisk’s Enterprise Division, said: “Most CIOs are aware that data leaks can result in identity theft, compromise of intellectual property, and loss of trade secrets, as well as significant PR and financial damage to organizations."

SanDisk and other thumb drive suppliers have various secured flash drives that, for example, need the user to pass a fingerprint recognition test before data on the drive is accessed.

Mildworth's described his ideas on how to combat the flash drive security threat: “Our survey demonstrates that, while there is some awareness of potential risks involved with unsecured USB flash drives, corporate IT execs need more effective policies, education, and technology solutions in order to mitigate the risks. Only a top-down effort involving intelligent device management, data monitoring, and centralized policy enforcement will sufficiently reduce risks, while allowing organizations to reap the productivity benefits of enhanced mobility.”

Alternatively you could superglue USB sockets shut on PCs as some companies have done.

^{[Paul Roberts, news editor,]}