TJX Data Loss Underscores Industry-Wide Absence of Data Loss Prevention Technology According to Palisade System |
(Archive News Story - Products mentioned in this Archive News Story may or may not be available from the manufacturer.)
Palisade Systems, Inc.
2625 N. Loop Dr. Suite 2120
Ames, IA, 50010
USA
Press release date: March 29, 2007
AMES, Iowa, March 29 // -- Palisade Systems, the leading provider of content monitoring and filtering and data loss prevention products, today announced that less than 10% of organizations in North America that store, send and access consumers' personally identifiable information have data loss prevention technology deployed to prevent illegal access and sending of consumers' personally identifiable information. To date, many of the millions of affected TJX customers have had their personal and financial information used for fraudulent purposes, and now face the daunting task of repairing the damage that has been done. Had TJX deployed data loss prevention technology, such as that of Palisade Systems' PacketSure technology in place, the loss of 34.5 million customers' credit card numbers and other personally identifiable information would never have occurred.
"Data loss can have a severe impact on our country's economy as well as Corporate America if consumers feel that their sensitive data is not being properly protected by the companies they do business with using a credit card," offered Kurt Shedenhelm, CEO and President of Palisade Systems. "If data loss prevention technology were more widely adopted we would see a significant drop in the number of identity theft cases resulting from stolen data. But until organizations wise up and deploy data loss prevention technology like PacketSure, we will continue to witness more data loss cases resulting from lack of security and compliance by organizations that store, send and access consumers' personally identifiable information."
Data loss prevention technology acts as a second layer of defense when a hacker has infiltrated an organization's network, by ensuring that any sensitive data the hacker is trying to send outside the network is blocked. Blocking the sensitive data from being transmitted occurs when the data loss prevention technology determines that the IP address the hacker is trying to send the data too is not recognized as an authorized IP address to receive sensitive data like Social Security Numbers, credit card numbers, addresses, drivers licenses, phone numbers, and other sensitive data.
The potential for damage doesn't end with the TJX incident. Palisade Systems recently announced that its Risk Assessment Program is discovering up to 100 policy violations over a two hour evaluation for mid to large size enterprises that store, send, and/or access sensitive data. Each policy violation accounts for sensitive data that is accidentally or maliciously being sent outside an organization's network without company authorization. Sensitive data that is leaking from each organization's network could include proprietary data, intellectual property, social security numbers, account information, credit card numbers, etc.
How Data Loss Prevention Technology Works
Unlike previous technologies that are limited to only monitoring structured data like Social Security Numbers through pattern or data matching, Palisade's data loss prevention technology, PacketSure, is able to identify a Social Security Number or credit card number (for example) and stop it from being sent even when the number is hidden in a document filled with other content. PacketSure uses the following multi-layered approach for inspecting network communications for confidential information and data theft:
o The Extended Regular Expression (ERE) layer identifies structured data, such as social security numbers, account numbers, or phone numbers by pattern matching. o The Content Matching layer identifies structured data by direct matching. o The Content Learning layer identifies unstructured data, such as intellectual property, product pricing, patent information, or source code, and monitors changes to documents that contain the information. The Content Learning layer is a self-adapting layer that is able to classify each organization's proprietary unstructured data as public or private. o The Keyword Matching layer allows organizations to enter specific key words and identify those key words across all protocols.
About Palisade Systems, Inc.
Founded in 1996, Palisade Systems, Inc. is a leading provider of enterprise content security and data protection solutions with over 500 customers across North America and Europe. Palisade security appliances help organizations proactively secure intellectual property and private client information from leaking outside the network, define and enforce access to internal network resources, and enforce compliance with federal privacy and industry security regulations. Palisade Systems customers include prominent clients in healthcare, financial services, insurance industries, along with universities and school districts. For more information, please visit http://www.palisadesys.com/ or contact Palisade's sales department at 1.888.824.0720.
Source: Palisade Systems, Inc. Web site: http://www.palisadesys.com/
|
|
|
|
|
|
| 
