Read an article yesterday which discusses some startling endpoint security survey results. Senforce Technologies conducted the survery, which is set for release on Monday. It found that 73% of respondents say their companies store critical data on removable devices including laptops, USB thumbdrives, and even iPods.
With nearly weekly reports of data loss and/or theft related to poor data security policies, one would think companies would be moving more quickly to limit data access and the way in which data are stored. Critical data, such as that containing customer data (e.g., SSNs, credit card numbers), should never be stored on laptops or USB devices.
The article notes how two companies solved the potential problem of employees copying data to USB removable media: one plugged their USB ports with epoxy and the other cut the connections to the ports.