USB Consumerism Out Of Control as 21% use 10 or more

Survey finds USB Consumerism Spiralling Out Of Control as a Quarter of workers use 10 or more

Organisations still fail to grasp the gravity of the problem, failing to control the use of these devices, and putting the health and security of their sensitive data at risk.

1^st December 2010, London (UK): An online survey has found that USB Flash drive ownership has exploded with 100% of the 229 respondents having at least one such device - 54% possessing between 3 and 6 - and more than 21% owning as many as 10 or more.  While good news for vendors of these must-have items, the news may not be so welcome for security and compliance teams tasked with protecting the sensitive data residing on these omnipresent devices.  With over 85% of respondents confirming that their company allows the use of these removable media devices (and with many of those working where USB drives are banned confirming that they use them anyway), it is very concerning that more than half of the respondents confirmed their USBs were not encrypted, leaving the corporate information on them completely vulnerable if borrowed, lost or stolen!

Conducted by CREDANT Technologies - the trusted experts in data protection, the survey found that the majority of people (68%) share their USBs with family, colleagues or friends, often leaving any sensitive data exposed and in jeopardy.  52% of the sample couldn’t even remember what they had saved on their device which is worrying as 20% never delete the corporate data stored, even when they no longer require it.  Even more alarming is the fact that 34% admitting they don’t know, at any given time, where all their USB devices are. 

Unsurprisingly some respondents (almost 10%) admitted they had lost a USB device containing corporate data, yet fully 76% never reported the loss to their bosses. If it were discovered that adequate measures had not been taken to protect sensitive information, for example securing the data with encryption technology, these companies could be deemed to have breached one or more of the many data protection laws and regulations in place internationally, subjecting them to potentially heavy fines, expensive breach notification costs and significant negative publicity. 

Bob Heard, CREDANT’s chief executive officer and founder believes, “Companies are spending millions on their security and it could all be in vain if they fail to close this basic area of vulnerability.  If they have a workforce that are using USB storage media, blissfully unaware of the potential mayhem that these ubiquitous devices could potentially cause, no matter how much is spent the enterprise will never be secure. These small USB sticks can be, and often are, easily lost or stolen, thus leaving data, and those responsible for protecting that data, vulnerable..”

Another discovery of the study is that the increasing use of USB flash drives is just the tip of the iceberg, as 37% of the sample admitted to synchronising their iPhones, smartphones and iPods with their work devices. This practice potentially exposes their companies to a multitude of data risks and network disasters.

Bob concludes, “Many organisations are either failing to take the problem seriously or to implement and enforce the right security, work practices and education for their users to address this problem.  Unsecured data on removable media is a significant and growing concern and organizations need to start planning now on how to close this vulnerability before they suffer a very expensive, and embarrassing breach.”

To download all of the survey results visit: http://www.credant.com/campaigns/usb_survey/interactive

CREDANT Technologies is the market leader in endpoint data protection solutions. CREDANT's data security solutions mitigate risk, preserve customer brand, and reduce the cost of compliance, enabling business to "protect what matters." CREDANT has been recognized by Inc. magazine as the #1 fastest growing security software company in 2008 and 2007; was selected by Red Herring as one of the top 100 privately held companies and top 100 Innovators; and was named Ernst & Young Entrepreneur of the Year® 2005. Austin Ventures, Menlo Ventures, Crescendo Ventures, Intel Capital (NASDAQ:INTC), and Cisco Systems (NASDAQ:CSCO) are investors in CREDANT Technologies. For more information, visit www.credant.com.

Source: Eskenzi PR