learn what you can do

share a tip, submit a link, add something new

Today's Security Fix

by Cara Garretson

Security

Confidental data for sale

Be the first to comment | 2I like it!
Tags: encryption

More »

Recent Posts

June 30, 2009, 09:07 AM —

No company wants their confidential, competitive data to wind up for sale at a market in Ghana. Northrop Grumman, a U.S. government contractor with clients including the Defense Intelligence Agency and the Transportation Security Agency, especially wouldn’t want the unencrypted details of its sensitive customer contracts to become merchandise at an open-air bazaar.

But that’s exactly what happened.

The sensitive data was stored on a drive that had belonged to a Northrop Grumman employee and had been installed in a PC that the contractor paid a third-party vendor to dispose of. Northrop Grumman believes the drive may have been stolen from the disposal vendor.

"Despite sophisticated safeguards, no company can inoculate itself completely against crime," the contractor said in a statement. True, but shouldn’t Northrop Grumman, which calls itself a `leading global security company,’ at least encrypt its drives?

In this world of data breaches, security experts extol the values of encrypting data, both “in motion” (meaning sent via e-mail or transferred to a removable device) and “at rest” (stored on a pc, server, or storage device.) I wonder what’s more damaging to Northrop Grumman, the fact that its confidential data could be bought on the open market, or the revelation that the company apparently doesn’t follow basic security practices with its own equipment?

Encryption isn’t 100 percent secure, but then again nothing is. Encrypting sensitive data seems to be a no-brainer step towards becoming as secure as possible.

Do you tweet? Follow me on Twitter here.

Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world

I like it!

Email
Print
Share
- Slashdot
- Digg
- Stumble
- Reddit
- Newsvine

Post a comment

Your name: *

E-mail: *

The content of this field is kept private and will not be shown publicly.

Subject:

Comment: *

Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
Lines and paragraphs break automatically.

peer-to-peer

Esther Schindler
If the comments are ugly, the code is ugly

claird
SVG a graphics format for 21st century

pasmith
Take Chrome OS for a test spin

Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?

sjvn
64-bits of protection?

jfruh
Android fragments vs. the iPhone monolith

mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive

Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann

Join the conversation here

Quick, practical advice for IT pros. Made fresh daily.

Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.

Newsletters

Subscribe to ITWORLD TODAY and receive the latest IT news and analysis.

*E-mail address:

*Verify E-mail:

*Job Title:

*Industry:

*Company Size:

*Country

* State:

I would like to receive offers via email from ITworld partners.

By clicking submit you agree to the terms and conditions outlined in ITworld's privacy policy.

view all newsletters »

webcasts & white papers

view all webcasts» view all white papers»

RESOURCE ALERTS

Get instant email notifications when white papers, webcasts and case studies are added to our library.
Sign up »

featured download

Ease integration of Unix, Linux and Windows-based computers

Surviving Windows is easier than you think… MKS offers the power of an integrated all-in-one environment and provides you with the Power of UNIX on Windows
Learn More

Brought to you by:

contests & free stuff

We have 5 copies of these two new books to give to some lucky readers. The deadline for entries is November 30, 2009.

	iPhone for Programmers: An App-Driven Approach Everything you need to start developing great iPhone apps. Enter now!
	The Google Way Discover how Google's culture of innovation is reinventing business. Enter now!

IT Jobs

apple adam

Priceless! The 25 Funniest Vintage Tech Ads
My oh my, how things have changed. These 25 vintage tech ads are guaranteed to take you back -- and, in most cases, remind you how truly terrible our tastes once were. Click ahead, and enjoy the shame-free trip down memory lane.

Case Study: AISO grows its "green" business

AISO founders envisioned a Web hosting company that was environmentally friendly. While the company employed energy-efficient innovations like solar panels, its infrastructure produced unacceptable power and cooling requirements. Find out how AISO leveraged AMD technology to overcome their challenge in this case study white paper.

Download this white paper »

Myth of the Million Dollar Database

In this whitepaper, Scalar explores the opportunity to change the landscape with respect to mission critical databases built around Oracle. Leveraging technologies such as Linux, high-end commodity processing power and Oracle RAC technology to architect, design, build and maintain database infrastructure that delivers maximum availability, reliability and performance at a fraction of traditional cost.

Download this white paper »

Success Story: Weather.com handles whatever nature serves up

On a typical day, weather.com, the Web site for The Weather Channel in Atlanta, serves up between 15 million and 20 million page views. But in September 2004, when back-to-back hurricanes ransacked Florida, the peak traffic on one day more than tripled: over 70 million page views by more than 7 million unique visitors. Read the full success story now.

Download this white paper »

Marketplace

Sponsored links

See how AT&T can help protect your network.

Unified Communications: Thoughts, Strategies and Predictions. Join the discussion.

Slow PC? Automatically update your drivers with DriverAgent

Engineer's Toolset v10: A collection of Tools for Fast Fixes to Network Issues

ITwhitepapers.com - Access thousands of whitepapers on 300+ technical topics.

Free Exchange webinar from Microsoft and Double-Take Software

Top 5 Reasons Application Performance and Network Security Go Together