With half of employees admitting to sending emails to the wrong person, firms are right to be worried
BOSTON -- Research conducted by IT security and control firm Sophos has revealed that 70 percent of businesses are concerned about sensitive material falling into the wrong hands as a result of data leakage via email*. A further 50 percent of employees admit to having accidentally sent an embarrassing or sensitive email to the wrong person from the workplace, demonstrating that email leakage is a very real concern**. Sophos experts note that it can potentially cause corporate embarrassment, compliance breaches and the loss of business critical information.
"As more business and personal interaction is conducted via work email, the risk of clicking send without double-checking the recipient's details is growing," said Graham Cluley, senior technology consultant at Sophos. "The fact that as many as half of employees have experienced that heart-stopping moment is too significant to ignore. Businesses would be wise to check that their email security solutions have the facility to prevent this from happening by identifying when sensitive data or attachments are contained in the message, and if they don't, to consider a more water-tight alternative."
To combat the risk of leaking information, Sophos recommends that companies install an email security solution that enables them to scan messages for sensitive data and keywords, and that uses encryption to ensure that business’ critical emails are sent securely. Furthermore, an effective appliance will identify and block confidential attachments, including those that have had their file type altered by the sender. This will ensure that accidental email loss and leakage by malicious intent are both thwarted.
"The vast majority of data leaks are via email and purely accidental, so companies that put a solid solution and security policy in place, and those that educate employees on responsible email use, will mitigate the risks and dramatically reduce the possibility of critical data loss," said Cluley.
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024