Survey: State Of Economy Leading To Increased Data Loss For Companies

  • Aug 14, 2009

In its sixth annual study of outbound e-mail and data loss prevention issues, Proofpoint, Inc. found that U.S. companies are increasingly concerned about a growing number of data leaks caused by employee misuse of e-mail, blogs, social networks, multimedia channels and even text messages.

According to the June study of 220 e-mail decision makers at U.S. companies with more than 1000 employees, organizations continue to embrace preventative measures -- some more drastic than others.

For example, as more U.S. companies reported their business was impacted by the exposure of sensitive or embarrassing information (34 percent, up from 23 percent in 2008), an increasing number say they employ staff to read or otherwise analyze the contents of outbound e-mail (38 percent, up from 29 percent in 2008).

The pain of data leakage has become so acute in 2009 that more U.S. companies report they employ staff whose primary or exclusive job is to monitor the content of outbound e-mail (33 percent, up from 15 percent in 2008).

In addition, companies are regularly ordered to produce employee e-mail as part of legal actions, exposing its contents to outside scrutiny. Nearly a quarter (24 percent) of large US companies report that employee e-mail was subpoenaed in the past 12 months.

When U.S. companies investigated the exposure of confidential, sensitive or private information via e-mail, blogs, multimedia channels and/or social networks, the end result for the offending employee was generally very bad news:

  • E-mail still the top threat: 43 percent of US companies surveyed had investigated an e-mail-based leak of confidential or proprietary information in the past 12 months. Nearly a third of them, 31 percent, terminated an employee for violating e-mail policies in the same period (up from 26 percent in 2008).
  • Blogs breaches continue: 18 percent had investigated a data loss event via a blog or message board in the past 12 months. 17 percent disciplined an employee for violating blog or message board policies, while nearly nine percent reported terminating an employee for such a violation (both increases from 2008, 11 percent and six percent, respectively).
  • Video exposure: Given the rapid adoption of video and audio media within the enterprise -- and the popularity of media sharing sites like YouTube -- it's no surprise that more U.S. companies reported investigating exposure events across these channels (18 percent, up from 12 percent in 2008). As a result, 15 percent have disciplined an employee for violating multimedia sharing / posting policies in the past 12 months, while eight percent reported terminating an employee for such a violation.
  • Friends or foes?: Concerning social networks, U.S. companies are also experiencing more exposure incidents involving sites like Facebook and LinkedIn as compared to 2008 (17 percent versus 12 percent). U.S. companies are taking a much more forceful approach with offending employees -- eight percent reported terminating an employee for such a violation as compared to only four percent in 2008.
  • Data loss in 140 characters or less: Even short message services like SMS texts and Twitter pose a risk. 13 percent of U.S. companies investigated an exposure event involving mobile or Web-based short message services in the past 12 months.

As the global economic recession forced many U.S. companies to downsize and reduce spending, the results of Proofpoint's survey show that those actions have often put them at greater risk for several reasons:

  • 18 percent of U.S. companies investigated a suspected leak or theft of confidential or proprietary information associated with an employee leaving the company (e.g., through voluntary or involuntary termination) in the past 12 months.
  • 42 percent of respondents say that increasing numbers of layoffs at their organizations in the past 12 months have created an increased risk of data leakage. 47 percent of respondents report that layoffs of IT staff have negatively impacted their organization's ability to protect confidential, proprietary and sensitive information in the past 12 months.
  • 50 percent of respondents say that budget constraints have negatively impacted their organization's ability to protect confidential, proprietary or sensitive information in the past 12 months.

Featured

  • Report: 47 Percent of Security Service Providers Are Not Yet Using AI or Automation Tools

    Trackforce, a provider of security workforce management platforms, today announced the launch of its 2025 Physical Security Operations Benchmark Report, an industry-first study that benchmarks both private security service providers and corporate security teams side by side. Based on a survey of over 300 security professionals across the globe, the report provides a comprehensive look at the state of physical security operations. Read Now

    • Guard Services

  • Identity Governance at the Crossroads of Complexity and Scale

    Modern enterprises are grappling with an increasing number of identities, both human and machine, across an ever-growing number of systems. They must also deal with increased operational demands, including faster onboarding, more scalable models, and tighter security enforcement. Navigating these ever-growing challenges with speed and accuracy requires a new approach to identity governance that is built for the future enterprise. Read Now

  • Eagle Eye Networks Launches AI Camera Gun Detection

    Eagle Eye Networks, a provider of cloud video surveillance, recently introduced Eagle Eye Gun Detection, a new layer of protection for schools and businesses that works with existing security cameras and infrastructure. Eagle Eye Networks is the first to build gun detection into its platform. Read Now

  • Report: AI is Supercharging Old-School Cybercriminal Tactics

    AI isn’t just transforming how we work. It’s reshaping how cybercriminals attack, with threat actors exploiting AI to mass produce malicious code loaders, steal browser credentials and accelerate cloud attacks, according to a new report from Elastic. Read Now

  • Pragmatism, Productivity, and the Push for Accountability in 2025-2026

    Every year, the security industry debates whether artificial intelligence is a disruption, an enabler, or a distraction. By 2025, that conversation matured, where AI became a working dimension in physical identity and access management (PIAM) programs. Observations from 2025 highlight this turning point in AI’s role in access control and define how security leaders are being distinguished based on how they apply it. Read Now

Most   Popular

New Products

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame.

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.