printer friendly version

All employees do it

SearchInform analytics has summed up the most frequent security incidents detected in client companies. The most frequent violation detected by risk management specialists is the leakage of information, which constitutes nearly one third of all incidents.

These types of incidents were detected by 100% companies. The documents are often uploaded to Flash drives (65% of all data leaks) and to the cloud (24%).

In 23% of cases, data leaks compromise information about clients and deals (databases, personal data of VIP clients) and technical documentation; 14% of data breaches leak accounting data, 9% financial data and another 9% tender documents and agreements.

Two other prevalent groups of incidents include spreading negative opinion about the company and colleagues. They constitute 15% and 20% of all incidents respectively. They are a security concern as they are often accompanied with data loss risks, including data which can benefit competitors or cause reputational damage.

Asocial behaviour of employees is identified in 6% of the cases, and include risks concerning gambling, blackmail and drug addiction. Drugs account for the majority of identified incidents within this group of violation types. During the analysis, analysts found correspondence in which purchasing and taking drugs were discussed as well as traces of visiting certain websites on the dark Web.

Another group of incidents includes employee fraud. These are various options for lobbying the interests of affiliated counterparties, conspiracies with contractors, side schemes, and side jobs. They account for 10% of all detected violations in total. In particular, one of the companies discovered an illegal project within the corporate perimeter which showed three current and five former employees involved. These are the most dangerous incidents for corporate financial wellbeing.

Abuse of work hours and sources constitute 2% of all incidents, but their detection allowed companies to optimise team work.

Alexey Parfentiev, leading analyst at SearchInform, notes: “We have analysed companies’ data from various industries: finance, logistics, retail, IT, manufacture, agriculture and services. The sad fact is that 100% of organisations detected serious information security violations.”

See more statistics from SearchInform at www.securitysa.com/ex/hosted/condyn_statistics.pdf

Share this article:

Further reading: