When data is being collected and stored, there is always a possibility of a cyber attack.
Many organizations fail to recognize that their own employees can pose a significant threat, even with their best security measures in place.
According to a report from Varonis, a data security specialist, a significant number of organizations worldwide (53%) have a concerning amount of over 1,000 sensitive files that are accessible to all staff. These files contain a wide range of sensitive information, including financial, health, and personal data such as credit card and social security numbers.
Just like a data scientist, Varonis conducted 785 data risk assessments across over 30 countries and 30 industries. The results revealed that on average, companies possessed a staggering 534,000 sensitive files.
Given the immense volume of sensitive data at their disposal, companies will be inclined to establish tailored permissions and restrictions on their files to safeguard against any potential leaks or theft. Implementing these access controls is just as important as preventing unauthorized individuals from entering a restricted area at work.
Overwhelmed by the amount of data?
“Exposure of data poses a significant risk to organizations of all sizes, industries, and locations,” stated the report. The issue, though, is the sheer amount of data that will require monitoring.“Many organizations have assigned permissions to an excessive number of folders, making it difficult for them to effectively manage,” Varonis stated. In the study, the average terabyte had nearly 17,000 uniquely permissioned folders. It indicates that a particular user or group has been given permissions to access that folder.
However, it is important to regularly review and update these folders to ensure that only the right employees, both individuals and groups, have access to them. Varonis’ analysts suggest that permissions should be kept up-to-date.
Therefore, certain organizations employ a system that automates the classification of files in order to swiftly assess the sensitivity of folder contents and establish access controls effortlessly.
“Having accurate classification is an excellent way to reduce the risk of data loss,” the analysts stated. These types of controls are usually defined in a broad manner. As an illustration, any file that contains personal information should not be allowed to leave our secure network.
Companies face significant risks from insiders, malware, and ransomware attacks due to the accessibility of global files. According to the analysts, a single click on a phishing email can trigger a series of events that result in the encryption or destruction of all available files.