A key difference between data leakage and data theft is the level of intent associated with the misdeed. Often there is no perceived "intent to commit a crime" in cases involving data leakage. The loss and leakage of data, especially confidential information, can be played out in several ways.
Data leakage prevention should be a priority for any organization as any leakage, no matter what the intent, has the potential to cause both tangible and intangible damage. For example, leakage can occur when an over zealous sales executive possibly sends out product information to his customers ahead of its launch and this information lands in the hands of the competition. It can also occur when a price list is sent out to help a reseller and then is discovered to have been posted on the internet. Of course there is also the time when content of a damaging internal "executive memo" somehow gets into the hands of the press.
Without being aware, employees that "bend the rules" can quickly find themselves on a slippery slope towards full blown data theft. Consistently, data leakage starts small and grows. Even if there is some premeditation on how to get the data, it will rarely be taken in one lump sum, but instead in smaller almost undetectable amounts.
Furthermore, the number of "insider" incidences making the news and the related financial impact seems to be ever increasing. This fact is easily demonstrated by recent headlines such as the loss of 26.5 million identities at the Department of Veterans Affairs or the well publicized theft of 36 million Visa and MasterCard cardholder records from Card Systems Solutions. It comes as no surprise that in a recent American Management Association (AMA) survey, more organizations are increasingly using employee monitoring solutions to protect the data in motion flowing through the network.
The reality remains that even with multiple security measures in place; organizations that do not have a practical way to monitor employee network activity to find the internal source of the leaks, are effectively powerless to address the risk of data leakage. As many who have been caught have said, "It was just so easy; I could no longer resist the temptation, plus nothing was really taken."
Chronicle Solutions has created a network content recorder that is able to easily and intelligently capture, replay and analyze the content in original format. This easy-to-use solution is powerful in assisting IT security professionals to efficiently monitor, respond to alerts and research potential threats and wrong-doing occurring within their network.
Moreover, as most employees are basically good people, using netReplay® to proactively enforce Acceptable Usage Policies allows the organization to promote "freedom with responsibility" which fosters a strong sense of both employee accountability and corporate responsibility.
Whether the requirements call for the mobile, rapid deployment provided by Chronicle’s netReplay® 2500 PORTABLE or the proactive, longer term benefits found in netReplay® rack-mounted recorders, IT security professionals will be armed with the most effective content monitoring and digital forensic tool available.
Because of netReplay's out-of-the-box capabilities, it can begin to immediately collect data - just connect. netReplay® quickly and efficiently collects all data necessary for formal record retention, security evaluations research and digital evidence collection.
While netReplay® has the ability to reassemble data that has already been collected in full packet capture sessions such as Wireshark (Ethereal) or tcpdump, by using netReplay® up front from the onset (on live network connection), IT security staff quickly move from a reactive "capture everything" mode to a much more effective proactive "collect, monitor, research and analyze" approach.
netReplay® will increase the effectiveness of a security effort by providing a high level of precision on the information it is collecting and analyzing as well as the correlation of all events that lead to any data leakage or theft. This is accomplished while also complying with any legal requirements, such as privacy and employee rights and statutory limitations.
netReplay® is has been described as a "unique, network content DVR (Digital Video Recorder) that eliminates the digital equivalent to commercials." netReplay’s intelligent deep-packet inspection and content capture effectively cuts out the recording of duplicate data and network content "noise."
netReplay® will greatly improve productivity by reducing the time and complexity of data and event log analysis. Essentially, with netReplay® IT security investigators now have the means to find the proverbial "needle in a haystack" in hours versus weeks or even months.
netReplay® will increase credibility of results by replaying exactly what, when, and how content was seen and handled by the user, thereby demonstrating both proof of the user’s content as well as related actions. In addition, due to Chronicle's Forensic Information Fingerprinting Engine (FIFE™), evidence of user activity is forensically accurate and credible.
netReplay® will increase the efficiency of a network security team by allowing more personnel to be trained to use the tool. netReplay® is an easy-to-learn and easy-to-use data capture and monitoring tool that provides immediate benefits.