E-mail Causes Most Enterprise Data Loss

[security curmudgeon <jericho () attrition org>]

http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=227101707&subSection=News

E-mail Causes Most Enterprise Data Loss

Breaches associated with social media, video sharing, blogs are also on 
the rise, finds Proofpoint study.

By Alison Diana
InformationWeek
August 30, 2010 11:07 AM

Although e-mail continues to be the primary source of data-loss risk at 
enterprises, the number of data-loss events associated with social media 
tools -- and related disciplinary actions -- continues to grow, a new 
study found.

In fact, 35% of large enterprises have investigated a leak of 
confidential, sensitive, or proprietary data via e-mail in the past year, 
according to a study of 261 large businesses by Osterman Research for 
Proofpoint. And 25% of the U.S. companies surveyed had looked into the 
exposure of such information via a blog or message board, compared with 
18% in 2009, the study found.

One-fifth of businesses looked into similar postings on a social 
networking site such as Facebook or LinkedIn, according to the report. 
Last year, 17% of enterprises took this step, the study found. In 
addition, 18% of U.S. enterprises investigated postings on media-sharing 
sites such as YouTube and Vimeo, while 17% looked into data exposure on 
SMS text or web-based short message systems such as Twitter, according to 
Proofpoint.

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php