sales MDM
Windows10 지원
OS X El Capitan 지원
CC badusb

컨텐츠 바로가기



(주)코소시스코리아 - 자료유출방지 DLP 솔루션 CC인증 제품, MDM 신제품, Easy Lock2, 보안USB, 멀티OS, 매체제어, DLP 사용자 매뉴얼, Endpoint Protector 데모 요청
  1. HOME
  2. BOARD
  3. 새로운 소식


게시판 상세
제목 90% of DLP violations occur in cloud storage apps
작성자 관리자 (ip:)
이메일
  • 작성일 2015-06-22 17:34:46
  • 추천 추천하기
  • 조회수 619
  • 평점 0점


90% of DLP violations occur in cloud storage apps

Posted on 09 June 2015.


90 percent of data loss prevention (DLP) violations occur in cloud storage apps, and a large percentage of these are for enterprise confidential intellectual property or customer or regulated data that the customer did not know or want to store there.




According to a Netskope report, 17.9 percent of all files in enterprise-sanctioned cloud apps violate at least one DLP policy. Of those DLP-violating files, one in five are exposed publicly.


Among the different types of mishandled sensitive content, the highest incidence of DLP policy violations occurred with personally identifiable information (PII) at 26.8 percent, while payment card information (PCI) represented the second highest at 24.3 percent.


The average number of apps used by enterprises has declined for the first time, from 730 in the last quarterly report to 715 in the Summer 2015 report. The underlying suggests that enterprises are beginning to consolidate apps, especially those in the marketing, collaboration and productivity categories.


There was no corresponding increase in apps being enterprise ready; a whopping 92 percent of the apps are not rated enterprise ready, meaning they lack the security, audit and certification, service-level agreement (SLA), legal, and vulnerability capabilities required for safe cloud enablement.


Roman Foeckl, CoSoSys CEO, thinks that cloud storage apps represent a concern for most organizations, mainly because of the ease of use for data sharing and collaboration.


"Netskope’s report provides valuable data on the number of apps used by employees and the type of data being shared on the cloud. Personal Identifiable Information (PII), Credit Card Numbers (CCNs), company projects data are the most shared on apps like Drobpox, Google Drive, Box, etc. We see this as a threat to companies that do not have clear regulations or policies on what should be shared on these apps or not and that do not use proper tools like DLP to filter what’s being uploaded or copied," said Foeckl.


"Most of cloud storage apps represent what’s called shadow IT and this is part of the problem. Employees use a significant amount of apps that are not officially supported by IT and have no sort of rules. It is also something that should be addressed by cloud storage apps providers, which could support more enterprise features, like Drobpox for Business is providing an API for third party security vendors," Foeckl added.



출처 : http://www.net-security.org/secworld.php?id=18492


첨부파일 netskope-report-062015.jpg
비밀번호 * 삭제하려면 비밀번호를 입력하세요.
관리자게시 스팸신고 스팸해제
목록 삭제 수정 답변
만화