| Author |
how to stop workers from copying sensitive client data???
|
|
|
| Suppose a company often hires contract workers to help with different projects. There are several computers used exclusively by these contractors. A contract worker would usually be with the company for a week or so and occasionally would copy a client's info. to a floppy disk and leave the office with it.
How do i prevent this from happening?
(besides ripping out the A drive) | |
| RussS 2003-12-10, 10:59 pm |
| Yup - rip the A drive out - Make sure there is no access with either network or internet - make sure there is no CDR drive - disable USB.
Then and only then could you be sure.
Personally I would have them sign a confidentiality and non removal of data agreement. Coupled with steep penalties that should suffice. | |
| Mimi1 2003-12-11, 11:58 am |
| I agree... thanks for your help!  | |
| jocampo 2003-12-11, 1:09 pm |
| Mmmmm....is Mimi's question Security+ related or just Real Job duties related? I think is easier set/put ACL's files just available for those persons that use or need access to 'em (all Os i know use some kind of ACL to files: NTFS, rwx permissions, etc). Doin' this,then, won't be necesary set disable the floppy disk.
 | |
|
| Actually it's a academic related question... my teacher gave this mini scenario to get us thinking about "professional" recommendations. But thanks for the info. | |
| jdmurray 2003-12-11, 1:27 pm |
| (*poof!* The Devil's advocate appears...)
Hmmmm...I'm a contractor and I want to "steal" confidental company information. I have the use of a workstation that can access the information, but my options for obtaning a copy of the info are limited as follows:
* The floppy, CD drive, serial, parallel, SCSI, and USB ports have all been disabled in the CMOS setup, and the CMOS is password protected. Drivers for these devices can also be uninstalled/disabled and PnP itself disabled.
* I can't open the workstation's case to install additional peripherals. Temporarily moving the workstation off-site is also not possible.
* The workstation is not on the network, so no FTP, email, IM, printing, faxing, VNC, pcAnywhere, etc. possibilities exist.
* I can't install any software because of the inability to access all of the above.
Therefore...
I have no choice but to copy the confidental information down on paper by hand and leave with it in my pocket. Or I can relay the information to anyone via voice/text/email using my cell phone or the company phone.
My conclusion is that if the contractor must have access to the information, and can actually complete useful work on such a restricted workstation, then you have to put the contractor under constant surveillance and search him/her before they enter and leave the premisis.
If the contactor has a photographic memory then you are gonna need something on the order of a Vulcan Mind Meld to protect your info.
All of this just to proect the company's employee phone directory? I'VE SEEN IT ATTEMPTED!! | |
|
| hahaha I really enjoyed reading your post... very entertaining and at the same time very insightful. thanks!  | |
| azimuth40 2003-12-11, 7:38 pm |
| quote:
Originally posted by jdmurray
(*poof!* The Devil's advocate appears...)
I have no choice but to copy the confidental information down on paper by hand and leave with it in my pocket. Or I can relay the information to anyone via voice/text/email using my cell phone or the company phone.
My conclusion is that if the contractor must have access to the information, and can actually complete useful work on such a restricted workstation, then you have to put the contractor under constant surveillance and search him/her before they enter and leave the premisis.
If the contactor has a photographic memory then you are gonna need something on the order of a Vulcan Mind Meld to protect your info.
All of this just to proect the company's employee phone directory? I'VE SEEN IT ATTEMPTED!!
Also the reason why cell phones are being banned in many places because of the built in camera feature. I have a pen camera that is good for my light work when social engineering is too much trouble. The pen works well on paper too when 320x240 is not clear enough. | |
| RussS 2003-12-11, 10:43 pm |
| I like your sneaky side dood ;-) | |
| jdmurray 2003-12-12, 1:33 am |
| There are now pen video cameras that look like fat writing pens and fit in your shirt pocket. They can broadcast a wireless video signal to a receiver (usually a laptop) over 100 feet away. I don't know what the battery life is like on them. They sell for around $400US.
Now that's sneaky. | |
| azimuth40 2003-12-12, 7:34 pm |
| quote:
Originally posted by jdmurray
There are now pen video cameras that look like fat writing pens and fit in your shirt pocket. They can broadcast a wireless video signal to a receiver (usually a laptop) over 100 feet away. I don't know what the battery life is like on them. They sell for around $400US.
Now that's sneaky.
Yep they sell them at the spy shop down the street. The one that I have is just your standard digital still with mini-usb port like on a PDA. Most are under a $100US.
They also have transmitting shirt buttons and bowties for a lot more dollars. some of this stuff is down right scary. | |
|
| I have an aquaintance who is involved in the shadow world. His box of tricks includes button cams, a 'felt tip' pen that is a scanner with built-in memory, keystroke logging transmitters that connect between the usb or ps2 plug for the keyboard and the PC, a radio transmitter vidcam with sound built into sunglasses. Damn I would love to play with some of them one day ;-) |
|
|
|