December 02, 2010, 10:55 AM — WikiLeaks is making as many waves as it is headlines these days--challenging the balance between the right to free speech and the need to defend national security interests. In a recent Forbes interview Julian Assange, founder of WikiLeaks, revealed that the site is expanding beyond government intelligence to begin unveiling corporate secrets as well.
While most computer and network security efforts are geared toward an "us vs. them" mentality of protecting data from outside attacks, the reality is that the threat from inside--from authorized employees--is actually much greater. Whether intentional or inadvertent, whether sabotage or honest mistake, the risk of leaked data is significant.
Solera Networks is well aware of the threat posed by WikiLeaks and the rise of information leaks in general. A survey by Solera Networks found that most organizations are not prepared to protect sensitive data. IT departments are not equipped to identify the source or scope of cyber attacks or information leaks.
A Solera Networks spokesperson elaborated via e-mail, "The survey found that 96% of those surveyed recognize the importance of real-time situational awareness--yet only about 19% say they have any capability to determine the extent of a breach or leak. In-depth interviews from the survey further indicate that only a fraction of the supposed prepared group can gather enough information from an attack to prevent it again in the future."
A McAfee blog post by John Dasher explains, "While technology can't put a genie back into a bottle, it can provide an organization the tools needed to deal with this type of problem going forward. Data Loss Prevention (DLP) technology can block attempted USB thumb drive use, or send up alarm flares when an otherwise "normal," authorized user suddenly copies hundreds of MBs of sensitive information to their laptop in preparation for a hasty defection to a competitor or sharing with the likes of a WikiLeaks."