Unencrypted USB devices are still being used by businesses despite the fact that unsecured data could lead to GDPR fines.
According to a survey by the global security company ESET, and Kingston Technology, a world leader in technology products, 55% of business don’t encrypt their removable devices, leaving them vulnerable to data breaches.
“With GDPR’s one-year milestone just a month away, it is interesting to see what businesses are doing differently to protect themselves from cyber security issues and fines,” said Jake Moore, cyber security specialist at ESET.
Data breaches Its not just digital, physical data breaches matter too
The research revealed that businesses are still not adequately protected from data leaks as this level of unencrypted devices means anyone can access personal data without security clearances.
Moore added: “This poses significant security concerns for firms that do not have the processes in place to ensure their data is safe. One of the ways to do this is through the use of encryption. However, the survey reveals that password protection is still widely used amongst businesses even though it lacks in sophistication.”
Did you see where I left my USB stick?
The survey of over 500 British business leaders also revealed that 62% of executives admit to seeing USB devices in unsecured locations such as desks, drawers and exposed office spaces, where an employee or visitor could access without permission.
According to Robert Allen, European Director of Marketing & Technical Services at Kingston Technology, losing an unencrypted USB stick can be catastrophic.
He said: “Using encrypted USBs will protect your sensitive data outside of the network firewall. Encryption promotes and maintains a productive and efficient mobile workforce while complying with GDPR and other data privacy regulations. At the same time, it protects the business network from being infected or hacked by cyber criminals that implant malware to infiltrate personal data. Can corporations really afford to take the risk?”
Why the humble USB stick could be your organisation’s biggest security flaw