Survey: Removable Media Devices Overtake Web Viruses As Top Security Threat

  • May 11, 2007

Removable media devices now present the biggest threat to corporate security, according to research conducted at this year’s InfoSecurity Europe conference in London. However, the research conducted by Centennial Software found that four out of five companies do not have effective measures in place to protect against the threat the devices can pose.

More than 43 percent of those questioned have no controls whatsoever in place to manage removable media devices, 27.4 percent leave it to the manager’s discretion, and 8.6 percent have taken the drastic step of introducing a company-wide ban. Only 16.4 percent use endpoint security software to manage the potential risks effectively. This is despite a raft of recent media stories surrounding insider data theft using removable media.

But companies are not ignorant of the risk. In a significant development for Centennial’s annual “Security Attitudes Survey”, 2007 saw removable media devices rated by 38.4 percent of respondents as the top security issue facing their organization. The risk has taken over from Web viruses (23.7 percent) and malware/spyware (22.3 percent) for the first time.

While more company officals in 2007 said they do include removable devices in the acceptable use policies (63.4 percent versus 54.5 percent last year), with more USB sticks than ever in use on the network (65.6 percent regularly use USB sticks, up from 36.3 percent last year), it’s not enough to rely on a policy, according to Centennial.

“It’s long been recognized that human error leads to the majority of information security problems,” said Matt Fisher, vice president at Centennial. “Leaving the use of removable devices at the discretion of staff exacerbates the risks posed by these devices -- especially when a minority of employees may have reasons for wanting to steal or compromise data.

“A larger proportion of companies than last year said they had no controls for managing removable devices in place -- 43.3 percent versus 38.5 percent last year. This is an alarming trend; if organizations recognize the risks of data loss, theft and damage from USB sticks, smartphones and MP3 players, they need to take action to manage the threat and protect their data.”

The third annual “Security Attitudes Survey” was conducted over the three days of Infosecurity Europe and was completed by more than 370 mid and senior level IT managers.

Featured

  • Security Today Announces 2025 CyberSecured Award Winners

    Security Today is pleased to announce the 2025 CyberSecured Awards winners. Sixteen companies are being recognized this year for their network products and other cybersecurity initiatives that secure our world today. Read Now

  • Empowering and Securing a Mobile Workforce

    What happens when technology lets you work anywhere – but exposes you to security threats everywhere? This is the reality of modern work. No longer tethered to desks, work happens everywhere – in the office, from home, on the road, and in countless locations in between. Read Now

  • TSA Introduces New $45 Fee Option for Travelers Without REAL ID Starting February 1

    The Transportation Security Administration (TSA) announced today that it will refer all passengers who do not present an acceptable form of ID and still want to fly an option to pay a $45 fee to use a modernized alternative identity verification system, TSA Confirm.ID, to establish identity at security checkpoints beginning on February 1, 2026. Read Now

  • The Evolution of IP Camera Intelligence

    As the 30th anniversary of the IP camera approaches in 2026, it is worth reflecting on how far we have come. The first network camera, launched in 1996, delivered one frame every 17 seconds—not impressive by today’s standards, but groundbreaking at the time. It did something that no analog system could: transmit video over a standard IP network. Read Now

  • From Surveillance to Intelligence

    Years ago, it would have been significantly more expensive to run an analytic like that — requiring a custom-built solution with burdensome infrastructure demands — but modern edge devices have made it accessible to everyone. It also saves time, which is a critical factor if a missing child is involved. Video compression technology has played a critical role as well. Over the years, significant advancements have been made in video coding standards — including H.263, MPEG formats, and H.264—alongside compression optimization technologies developed by IP video manufacturers to improve efficiency without sacrificing quality. The open-source AV1 codec developed by the Alliance for Open Media—a consortium including Google, Netflix, Microsoft, Amazon and others — is already the preferred decoder for cloud-based applications, and is quickly becoming the standard for video compression of all types. Read Now

Most   Popular

New Products

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • EasyGate SPT and SPD

    EasyGate SPT SPD

    Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities