The Greatest Risk to Data Security? It's People and Their Feelings
A new report from Code42 indicates that the more human aspects of data security may be the most dangerous.
August 02, 2018 at 10:36 AM
3 minute read
The original version of this story was published on Corporate Counsel
Risky human behavior is viewed as one of the greatest threats to the security of a company's data, according to a report published Wednesday.
The report from information security company Code42 indicates that human emotion, particularly executives' feelings of ownership over their own work, is what puts a company at the greatest risk when it comes to losing precious data.
The new data is based on a survey sent to 1,634 people, including business and IT or security leaders in the U.S., U.K., Germany, Austria and Switzerland, all of whom work at companies of 250 employees or more.
Human emotion plays a great part in risking a data breach, according to the report, particularly when executives fail to understand that the work they produce in the office belongs to the company, and needs to be protected as such.
Fifty percent of CEO respondents said they believe their work is their own and not their company's. Of those 50 percent, 59 percent responded they feel that way because they've used their own time to create said product. Forty-six percent said they feel like they impart a little bit of themselves into their work which is why they feel ownership over it.
Further, 78 percent of the chief information security officers surveyed believe that employees will do their jobs the way they want to despite what kind of cybersecurity policies are put in place.
When it comes to phishing, 63 percent of CEOs indicated that they have clicked on a link that they thought they shouldn't have or didn't intend to. When asked why they didn't report clicking on the suspicious link, 38 percent of CEOs indicated that they thought it was something they could sort out on their own.
Fifty-nine percent of CEOs indicated that they have also downloaded something to their computer knowing the program they downloaded had not been approved by the IT department. As for the reason to download said programs, 36 percent of CEOs said they believe that the IT department does not understand what they need to do to get their job done.
“Even the strongest data securities policies and perimeters are no match for human behavior,” the report said.
Below are three additional takeaways from the report:
- Twenty percent of business leaders who responded indicate that they believe ransomware is the biggest threat to their business.
- Companies are saving up cryptocurrency in the event that they'll need to pay off criminals who use ransomware on their servers. Seventy-three percent of chief information security officers indicated that over the past year they have stockpiled cryptocurrency for such payments.
- In the event of a breach, the majority of respondents think they will be able to recover their data. Sixty-seven percent of business leaders said that they believe if they lost all of their data tomorrow they would be able get all of it back. Seventy-six percent of security and IT leaders also believe this.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllFrom 'Confusing Labyrinth' to Speeding 'Roller Coaster': Uncertainty Reigns in Title IX as Litigators Await Second Trump Admin
6 minute readNew Class Action Points to Fears Over Privacy, Abortions and Fertility
Trending Stories
- 1The Rise of AI-Generated Deepfakes: A New Cybersecurity Threat for Law Firms
- 2Litigation Leaders: Labaton’s Eric Belfi on Running Case Investigation, Analysis and Evaluation In-House
- 3Spoliation Sanctions
- 4At FDA, Flavored Vape Products Go Up In Smoke
- 5Arguing Class Actions: CAFA’s Local Controversy Exception
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250