Maximizing E-mail Security ROI - Part IV The Digital Monsters under Your Bed: E-Mail Intruders by CipherTrust
This is the last of a five-part series on Maximizing Email Security ROI.
Remember your kid fears? As soon as the lights went out, the monsters under your bed began plotting ways to get you. Somehow, though, you always managed to outsmart them and make it through the night. Then one night you grew up, and the monsters went away for good.
Well, they're back. And they've unionized.
International rings of hackers, many backed by funds from organized crime groups, are the new monsters hiding under your bed-only now they'll attack in broad daylight. They've realized that there's money to be made by breaking into your network-lots of money-and they want their "fair share." They have advanced degrees, financial motivation and plenty of time to figure out ways around software-based e-mail intrusion "solutions" (yes, even the really, really expensive one you just installed-sorry).
Once hackers have discovered a way into your network, all bets are off. They have access to any information residing on your servers, including your customer database, employee personnel files, bank account numbers and proprietary product information. They can run denial-of-service attacks to take down mail servers and disrupt your work environment. They can hijack your servers and use them as "spam cannons," sending millions of fraudulent e-mails purporting to be from your company. In short, they can do whatever they want.
This week's newsletter will identify the specific dangers posed by network intrusions and explain how keeping these new monsters from stealing the digital lifeblood of your enterprise can ensure that your investment in network security is handsomely rewarded.
Determining E-mail Security ROI
When attempting to extract meaningful hard-cost data to evaluate e-mail security ROI, damages can be broken into two categories: Ongoing or Catastrophic. Ongoing costs tend to occur continually and increase in scale. For instance, a 10% increase in spam volume will result in 10% higher costs. Catastrophic costs, on the other hand, are "one-and-done" losses that are intermittent but categorically high when they occur. An example of a catastrophic cost would be a single security breach that allowed theft of proprietary intellectual property, causing millions of dollars in losses. In general, failure to prevent e-mail intrusions will result in expenditures that qualify as catastrophic.
Liability
Last week's IronMail Insider discussed the costs associated with allowing inappropriate material to cross the enterprise gateway or pass between workstations. The lawsuits resulting from companies failing to enforce e-mail policy and being held responsible for the messages crossing their networks all resulted in catastrophic costs to the enterprise.
As with policy enforcement (and encryption, the topic of next week's newsletter), intrusion prevention is paramount to a company's efforts to comply with legislation regarding customer, financial and patient information security. Federal legislation such as HIPAA, Sarbanes-Oxley and GLBA provides for steep financial penalties for corporations which fail to take the necessary steps to ensure information security (up to $250,000 per incident). In addition, potential arrests and criminal charges for company officers, and costly lawsuits from customers and patients should provide all the incentive necessary for companies to do anything possible to protect classified information.
A terrifying example of the liability faced by an organization which fails to prevent intrusions happened very recently. On August 1, 2004, a database intrusion occurred through one unsecured computer at the University of California - Berkeley. The intrusion wasn't discovered until August 30, meaning the hackers had a full month of unfettered access to the personal information of as many as 1.4 million disabled and elderly Californians, opening the door to a potentially devastating class action suit by those affected. This incident serves as a disturbing reminder that a single workstation can sacrifice the identities of millions.
Reputation
Loss of trust from partners and customers due to a company's failure to prevent hackers from accessing their network can be just as destructive as any lawsuit. Failure to prevent intrusions into an e-mail system will leave administrators with few, if any, options after the damage is done. Business partners will be understandably reluctant to share any of their proprietary information, and customers will likely look to your competitors to ensure that their private data is safe.
Not surprisingly, most companies will go to great lengths to hide the fact that their systems have been compromised. Over 50% of respondents to the 2004 Computer Crime and Security Survey by the FBI and Computer Security Institute indicated that they did not report system intrusions to law enforcement or legal council because of fear of negative publicity. Of course, if they'd had effective intrusion prevention in the first place, there wouldn't be anything to report.
Asset/IP protection
The only way to ensure that all information residing on, or accessible through, e-mail servers is protected is to make it completely invisible to hackers and other would-be intruders. While some software-based approaches do serviceable jobs of detecting intrusion attempts and thwarting them when they happen, the mere fact that the hacker knows where the network is provides motivation enough to keep trying to find a way in.
When your company's intellectual property is stolen or otherwise compromised, the catastrophic costs can be staggering. According to the 2004 Computer Crime and Security Survey, a total of 269 respondents from U.S. corporations, government agencies, financial institutions, medical institutions and universities reported intellectual property losses totaling $11,460,000 in damages from theft of proprietary information. An unfortunate side note to this statistic: 98% of the survey respondents had firewall protection in place, a revealing testament to the ineffectiveness of stand-alone security components.
Get Rid of the Modern-Day Monsters
A comprehensive e-mail security approach including elements of anti-spam, anti-virus, policy enforcement, intrusion prevention and encryption is the most effective defense against all external and internal threats. For more information on how to protect your enterprise network from all manner of e-mail threats, download CipherTrust's FREE whitepaper, "Securing the E-Mail Boundary: An Overview of IronMail".
The final installment of the Maximizing E-Mail Security ROI series will discuss the issues surrounding encryption of confidential information contained in e-mail messages.
Article Source: http://www.BharatBhasha.com
Article Url: http://www.bharatbhasha.com/email.php/18069
| Other Articles related to "Maximizing E mail Security ROI Part IV The Digital Monsters under Your Bed E Mail Intruders" by CipherTrust | |
Maximizing E mail Security ROI Part V A New Twist to an Old Problem Email Encryption
by CipherTrust This is the last of a five-part series on Maximizing Email Security ROI. Throughout the ages, people have encrypted communications to suit their information security needs. In the 1st century B.C., Julius Caesar didnt trust the couriers who carried his messages to trusted acquaintances. So, he replaced every A with a D, every B with an E, and so on, all the way through the alphabet. Only those who knew Caesars shift-by-three rule could decipher his messages. Over 2000 years...
Maximizing Email Security ROI Stop Spam and Save
by CipherTrustThis is the first of a five-part series on Maximizing Email Security ROI In the realm of email security threats, the costs of spam are relatively easy to recognize. Although most organizations rarely, if ever, take the time to calculate their spam costs, they can easily account for the losses caused by spam with regards to employee productivity, consumption of IT resources and help desk costs. Harder to measure are the less obvious, and potentially catastrophic, costs incurred...
How HIPAA Security Policies Affect Corporate E mail Systems
by CipherTrustAlthough considered by many to be the sole concern of health care providers, the Health Insurance Portability and Accountability Act (HIPAA) affects nearly all companies that regularly transmit or store employee health insurance information. HIPAA was signed into law in 1996 and it's original purpose was to protect employee health and insurance information when workers changed or lost their jobs. As use of the internet became more widespread in the mid-1990s, HIPAA requirements...
Maximizing Email Security ROI Part III No More Mr Nice Guy Enforcing E Mail Policy
by CipherTrustThis is the third of a five-part series on Maximizing E-mail Security ROI.E-mail is an easy, cheap and readily available form of communication. Its a great tool for businesses, but without proper safeguards in place to regulate the information transmitted it can also be a potential threat. An effective e-mail policy should be all-encompassing, helping organizations comply with federal regulations, protect intellectual property and prevent offensive materials from being...
Maximizing Email Security ROI Part II Stop Viruses Before They Stop You
by CipherTrustThis is the second of a five-part series on Maximizing Email Security ROI. Across the spectrum of information security risks, most casual users understand the dangers posed by viruses and worms. Network administrators have even more reason to fear a virus attack, as a successful assault can cripple corporate networks for days. The lasting damage, however, is much more difficult to determine with precision, as the residual financial impact of a virus infection extends long after...
Detecting and Eliminating Computer Viruses at the Gateway
by CipherTrustTraditional anti-virus software only stops known computer viruses stopping undefined computer viruses requires a different approach.In the past, network administrators scrambled to apply new virus signatures whenever new computer viruses were discovered. While these signatures will stop a known threat, it takes time for anti-virus vendors to develop them. Unfortunately, the newest and most damaging viruses are able to spread so quickly that the damage is done before a...
Increase Efficiency with Intelligent Email Traffic Control
by CipherTrustWork Smarter, Not HarderCipherTrusts IronMail has helped some of the largest enterprises in the world stem the flood of spam to their end users, as well as address a host of other e-mail threats. IronMails unique Spam Profiler tool provides maximum effectiveness by scrutinizing thousands of characteristics of every message to determine a spam score. But the challenges for enterprises today do not stop at identifying and blocking spam. With spam volumes continuing to increase...
E mail Security Governance E mail Encryption and Authentication as a Business Enabler
by CipherTrust How to Easily Secure Your E-mail System and Comply with HIPAA, Sarbanes-Oxley, and GLBA RegulationsWhile recent government regulations vary in scope and purpose, the need to protect and ensure the integrity of information is universal. Much of the information germane to business today is assimilated and communicated over messaging platforms such as e-mail. As a result, the need for a comprehensive approach to the secure delivery of e-mail affects almost all organizations,...
3 Criteria for Controlling Enterprise Spam
by CipherTrustOr: T*ake Y O U R email ba & ack + From the Sp@mmers! 0400constrictor bubble snake informational If you have a business, then you have a spam problem. The efficiencies of communicating through e-mail not only benefit organizations like yours; they also benefit the spammers who profit off of sending pernicious e-mails to millions of people every day. In fact, spam is so cost-effective that it costs less than $0.0004 to send a single spam. Thats 25 emails for just one penny! The...
How Spammers Fool Spam Filters
by CipherTrustAnd How to Stop Them Effectively stopping spam over the long-term requires much more than blocking individual IP addresses and creating rules based on keywords that spammers typically use. The increasing sophistication of tools spammers use coupled with the increasing number of spammers in the wild has created a hyper-evolution in the variety and volume of spam. The old ways of blocking the bad guys just dont work anymore. Examining spam and spam-blocking technology can...
| | Click here to see More Articles by CipherTrust
|
| Articles In LimeLight | How To Make Easy Money On Ebay
By Ross DeCarlo Added on Friday, May 2, 2008
Investing In Commercial Real Estate
By Kim Lee Added on Thursday, April 24, 2008
The Benefits Of Wicker Sunroom Furniture
By Adam Peters Added on Sunday, May 4, 2008
How To Improve Sales Conversions On Your Website
By Mario Churchill Added on Saturday, April 26, 2008
What Do You Have Guarding Your Identity?
By Lisa Carey Added on Monday, April 28, 2008
It's All About Walleye Fishing And Catching That Trophy Fish
By Kerry A. Francis Added on Monday, April 21, 2008
The Changing Face Of Self-certification Mortgages
By Michael Sterios Added on Friday, May 2, 2008
Pet Nutrition And Health
By Mikael Rieck Added on Friday, May 2, 2008
Recognizing Pet Poisoning Symptoms
By Mikael Rieck Added on Friday, May 2, 2008
Putting The "Ad" Into Adwords
By Peter Astley-Sparke Added on Monday, April 28, 2008
How To Find A Chanel Handbag And Save Money
By Tori A Hewitt Added on Saturday, April 26, 2008
What Businesses Should Know About Training Metrics
By Sam Miller Added on Friday, April 18, 2008
Cheap Holiday Vacations During The Winter
By Michael Peterson Added on Monday, April 21, 2008
Few Advantages Of Second Mortgage
By Kim Lee Added on Tuesday, April 29, 2008
Does Your Small Home Business Have A Blog?
By K. Faram Added on Saturday, May 3, 2008
Network Marketing Lead Generation - Why Its Important To Keep Your Pipeline Full?
By Jason Paul Added on Saturday, May 3, 2008
Apply For Credit Cards: The Basic Necessities Unplugged
By Devin Gilliland Added on Friday, April 25, 2008
New Approaches To Email Marketing Without Spamming
By Deepak Dutta Added on Tuesday, April 29, 2008
Shopping Around For A Second Mortgage
By Kim Lee Added on Friday, May 2, 2008
The Next Generation Of Dvd Players For Your Vehicle
By Mark Robinson Added on Saturday, April 19, 2008
|
|
|
Publishers / Webmasters
|
|
Tell A Friend
|
| Comments / Questions? |
| Download this article in PDF |
|
373 Users Online!
|
| Latest Articles: | - Bronze Casting Information And The Process Of Bronze Casting
- By Kent Klein
- The Ultimate Guide To A Client Conversion System
- By Tracey Lawton
- Brass Casting Information And The Process Of Brass Casting
- By Kent Klein
- Aluminum Information And The Process Of Aluminum Casting
- By Kent Klein
- Iron Casting Information And The Process Of Iron Casting
- By Kent Klein
- Casting Supplies Information And What Casting Supplies Will You Need
- By Kent Klein
- Metal Casting Tools And Definitions Of Metal Casting Tools
- By Kent Klein
- Information On Metal Casting Crucibles
- By Kent Klein
- Information On Casting Sand And Green Sand Or Foundry Sand
- By Kent Klein
- Information On Casting Associations And Metal Casting Groups
- By Kent Klein
- Information On Resin Casting And The Process Of Resin Casting
- By Kent Klein
- Metal Casting Information And Basic Metal Casting Information
- By Kent Klein
- Spin Casting, Sand Casting, And Other Metal Casting Processes
- By Kent Klein
- Chase The Winter Blues With Retirement Hobbies.
- By Carm Paynter
- Metal Casting Furnaces And Metal Casting Furnace Types Described
- By Kent Klein
- DIY Bronze Furnace, Diy Casting Furnaces, And Other Metal Casting Furnaces
- By Kent Klein
- Injector Torch, Cutting Torch, And Other Metal Casting Torches Described
- By Kent Klein
- How To Cast Jewelry, Casting Jewelry, And Cast Jewelry Information Described
- By Kent Klein
- Die Casting Information, Die Casting Defined, And Types Of Die Casting
- By Kent Klein
- Lost Wax Casting Process
- By Kent Klein
|
| |
