Survey: Removable Media Devices Overtake Web Viruses As Top Security Threat -- Security Today

Survey: Removable Media Devices Overtake Web Viruses As Top Security Threat

May 11, 2007

Removable media devices now present the biggest threat to corporate security, according to research conducted at this year’s InfoSecurity Europe conference in London. However, the research conducted by Centennial Software found that four out of five companies do not have effective measures in place to protect against the threat the devices can pose.

More than 43 percent of those questioned have no controls whatsoever in place to manage removable media devices, 27.4 percent leave it to the manager’s discretion, and 8.6 percent have taken the drastic step of introducing a company-wide ban. Only 16.4 percent use endpoint security software to manage the potential risks effectively. This is despite a raft of recent media stories surrounding insider data theft using removable media.

But companies are not ignorant of the risk. In a significant development for Centennial’s annual “Security Attitudes Survey”, 2007 saw removable media devices rated by 38.4 percent of respondents as the top security issue facing their organization. The risk has taken over from Web viruses (23.7 percent) and malware/spyware (22.3 percent) for the first time.

While more company officals in 2007 said they do include removable devices in the acceptable use policies (63.4 percent versus 54.5 percent last year), with more USB sticks than ever in use on the network (65.6 percent regularly use USB sticks, up from 36.3 percent last year), it’s not enough to rely on a policy, according to Centennial.

“It’s long been recognized that human error leads to the majority of information security problems,” said Matt Fisher, vice president at Centennial. “Leaving the use of removable devices at the discretion of staff exacerbates the risks posed by these devices -- especially when a minority of employees may have reasons for wanting to steal or compromise data.

“A larger proportion of companies than last year said they had no controls for managing removable devices in place -- 43.3 percent versus 38.5 percent last year. This is an alarming trend; if organizations recognize the risks of data loss, theft and damage from USB sticks, smartphones and MP3 players, they need to take action to manage the threat and protect their data.”

The third annual “Security Attitudes Survey” was conducted over the three days of Infosecurity Europe and was completed by more than 370 mid and senior level IT managers.

Genetec Launches Cloudrunner Mobile App for Real-Time Vehicle Investigations in the Field
12/02/2025
Sonitrol Ft. Lauderdale and Level 5 Security Group Are Now Part of Securitas Technology
12/02/2025
SIA Opens Call for Nominations for 2026 Women in Security Forum Power 100
12/02/2025
Axis Signs CISA’s Secure by Design Pledge for Cybersecurity
12/02/2025
i-PRO Certified as a 2025 Great Place to Work Around the World
11/20/2025
Allied Universal Named to Forbes List of America’s Best Companies
11/19/2025
Motorola Solutions Acquires Blue Eye
11/19/2025
SIA Names Jonathan Aguila as 2025 Insightful Practitioner Award Honoree
11/13/2025

Featured

TSA Introduces New $45 Fee Option for Travelers Without REAL ID Starting February 1

The Transportation Security Administration (TSA) announced today that it will refer all passengers who do not present an acceptable form of ID and still want to fly an option to pay a $45 fee to use a modernized alternative identity verification system, TSA Confirm.ID, to establish identity at security checkpoints beginning on February 1, 2026. Read Now
- Airport Security
The Evolution of IP Camera Intelligence

As the 30th anniversary of the IP camera approaches in 2026, it is worth reflecting on how far we have come. The first network camera, launched in 1996, delivered one frame every 17 seconds—not impressive by today’s standards, but groundbreaking at the time. It did something that no analog system could: transmit video over a standard IP network. Read Now
- IP Video
From Surveillance to Intelligence

Years ago, it would have been significantly more expensive to run an analytic like that — requiring a custom-built solution with burdensome infrastructure demands — but modern edge devices have made it accessible to everyone. It also saves time, which is a critical factor if a missing child is involved. Video compression technology has played a critical role as well. Over the years, significant advancements have been made in video coding standards — including H.263, MPEG formats, and H.264—alongside compression optimization technologies developed by IP video manufacturers to improve efficiency without sacrificing quality. The open-source AV1 codec developed by the Alliance for Open Media—a consortium including Google, Netflix, Microsoft, Amazon and others — is already the preferred decoder for cloud-based applications, and is quickly becoming the standard for video compression of all types. Read Now
Cost: Reactive vs. Proactive Security

Security breaches often happen despite the availability of tools to prevent them. To combat this problem, the industry is shifting from reactive correction to proactive protection. This article will examine why so many security leaders have realized they must “lead before the breach” – not after. Read Now
- Facility Security
Achieving Clear Audio

In today’s ever-changing world of security and risk management, effective communication via an intercom and door entry communication system is a critical communication tool to keep a facility’s staff, visitors and vendors safe. Read Now
- Facility Security

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

Automatic Systems V07

Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.
A8V MIND

Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.
Unified VMS

AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities