Cybersecurity Insurance Checklist - Meet Insurance Requirements with BeyondTrust PAM Download for Free

  • Partners
  • Support
  • Careers
  • English
    • Deutsch
    • français
    • español
    • 한국어
    • português
BeyondTrust
  • Products

    Privileged Password Management

    Discover, manage, audit, and monitor privileged accounts and credentials.

    • Password Safe
    • DevOps Secrets Safe
    • Privileged Access Discovery Application

    Endpoint Privilege Management

    Enforce least privilege across Windows, Mac, Linux, and Unix endpoints.

    • Windows and Mac
    • Unix and Linux
    • Active Directory Bridge

    Secure Remote Access

    Centrally manage remote access for service desks, vendors, and operators.

    • Remote Support
    • Privileged Remote Access
    • Privileged Access Discovery Application

    Cloud Security Management

    Automate the management of identities and assets across your multicloud footprint.

    • Cloud Privilege Broker

    BeyondInsight

    Experience the industry’s most innovative, comprehensive platform for privileged access management.

  • Solutions

    Use Cases

    • Cloud Security
    • Compliance
    • Cyber Insurance
    • Digital Transformation
    • Endpoint Security
    • Operational Technology
    • Ransomware
    • Service Desk Efficiency
    • Zero Trust

    Industry Applications

    • Financial Services
    • Government Agencies
    • Healthcare
    • Law Enforcement
    • Manufacturing
    • Schools & Universities

    Solutions

    The BeyondTrust Privileged Access Management portfolio is an integrated solution that provides visibility and control over all privileged accounts and users.

  • Resources

    Learn

    • Blog
    • Customer Stories
    • Competitor Comparisons
    • Datasheets
    • Demos
    • Glossary
    • Podcast
    • Whitepapers

    Attend

    • Events
    • Go Beyond
    • Training
    • Webinars

    Support

    • Changelog
    • Professional Services
    • Technical Documentation

    Universal Privilege Management

    Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.

  • Company
    • About
    • Leadership
    • Core Values
    • Partners
    • Careers
  • Watch Demo
  • Contact Sales

There Go My Files…To the Cloud!

March 1, 2011

  • Blog
  • Archive
One of the many challenges that every IT administrator faces is ensuring that confidential company information stays within the corporate network. The network is scanned for vulnerabilities, patches are deployed, perimeter firewalls are in place, and endpoint protection products are installed – all in the battle to maintain a secure infrastructure. With all these measures in place, you may feel somewhat confident that you are doing everything you can to keep the bad guys out of your network. But what about the good guys? How do you keep well intentioned users from endangering confidential company information by taking it outside of the fortress you’ve built up to protect it? For starters, many organizations disable the use of external storage (USB thumb drives, for instance). This is for two main reasons, to keep unwanted files out, and to keep confidential files in. Nobody wants the corporate salary spreadsheets or critical customer list left on a thumb drive within a coffee shop. Some organizations also limit access to end users by removing administrative rights from their local accounts. This is something we have recommended often in the past, but in talking to customers, many have yet to implement this change or have done so in limited fashion. It seems everyone has exceptions, whether it is for the CEO, the person in accounting who is a “power user”, or the support engineer who needs to install his own software to troubleshoot customer issues. These days, however, there is a new way of transferring files. A way far easier than USB thumb drives or emailing yourself documents to personal accounts. Cloud based file synchronization. These services have become widely used for two reasons: they are simple and solve a real problem (keeping files in sync), and they use “the cloud” which everyone wants to utilize – even if that cloud may pose a security risk for your organization. And there are a lot of these services – Dropbox, Windows Live Drive and Sugarsync to name just a few. Think of it this way. Your CMO is working on the launch plans for an as of yet unannounced product. It is Friday, and he wants to work on it over the weekend. He simply needs to drop the file into the cloud storage folder on his desktop and poof…the file is whisked to the cloud and automatically synchronized wherever he has the client software installed – his home computer that hasn’t been patched since 2006 and his iPhone that he has left on an airplane (twice). It took no time at all for a confidential document to go from the secure environment you worked so hard to build, out into an environment that you have no control over. The same holds true for cloud-based backup services. No matter how secure their data store may be, the information contained within can be restored to any workstation, including home PCs, as long as you have the account credentials. When we talk to customers about this, some are aware of this issue, but are unsure how to remediate. Most of these services operate off HTTPS, so it isn’t as simple as blocking a particular outbound TCP port. The web service IP addresses for these services can be blocked, but it seems new servers are being brought online daily. That is why we have added several audits to Retina Network Security Scanner to help you identify workstations that have this category of software installed:
  • 13893 - Mozy Enterprise Detected
  • 13899 - Mozy Home Detected
  • 13900 - Mozy Professional Detected
  • 13905 - Dropbox Detected
  • 13906 - Evernote Detected
  • 13907 - Soonr Detected
  • 13908 - Storegate Detected
  • 13909 - Syncplicity Detected
  • 13910 - Carbonite Detected
  • 13911 - SugarSync Detected
  • 13912 - OpenDrive Detected
  • 13915 - Windows Live Essentials Detected
You can utilize these audits to pinpoint workstations that may be synchronizing data to the cloud against company policy. If you would like to see if your files are going to the cloud, please sign up for our FREE Retina Community edition or contact an eEye sales person at sales@eeye.com.

Chris Silva,

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

You May Also Be Interested In:

Whitepapers

Cybersecurity Insurance Checklist

Whitepapers

Microsoft Vulnerabilities Report 2021

Whitepapers

Privileged Access Management: PAM Checklist

Keep up with BeyondTrust

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Customer Support
Contact Sales

Products

  • Endpoint Privilege Management
  • Password Management
  • Privileged Remote Access
  • DevOps Secrets Safe
  • Remote Support
  • Cloud Privilege Broker

Resources

  • Blog
  • Case Studies
  • Competitor Comparisons
  • Datasheets
  • Glossary
  • Podcast
  • Videos
  • Webcasts
  • Whitepapers

About

  • Company
  • Careers
  • Contact
  • Events
  • Leadership Team
  • Partner Program
  • Press
BeyondTrust Logo
  • Facebook
  • Twitter
  • LinkedIn
  • Privacy
  • Security
  • Manage Cookies
  • WEEE Compliance

Copyright © 1999 — 2022 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.