Original title: Prison guards steal from themselves, convinced of experts|Security risk monitoring of sensitive endpoints should be strengthened.
Recently, Shanghai ** cracked a case of illegally obtaining computer information system data. Some time ago, ** received a report from a company that provides navigation services, saying that it was found that someone used technical means to steal the national navigation map information data in the company's server and sold it in the forum, resulting in a direct economic loss of about 210,000 yuan for the company. After the investigation, it was found that Zhang Mouqi, a criminal suspect working in a data technology company, took advantage of his position to steal the database information of the company he worked for and sold it, causing great economic losses to the target company. It can be seen that how to prevent employees from using their positions to seek improper benefits has become an urgent problem to be solved in the process of enterprise development. For the data leakage caused by employee self-theft, Sangfor experts believe that enterprises should further strengthen the monitoring, protection and management of the security status of sensitive data terminals, and establish and improve the network security system, so as to prevent employee leakage and reduce the losses caused by employee problems.
Experts recommend that companies control access rights in their day-to-day work, authorize information only to those who need it, and regularly review and update permissions. Sensitive data is also encrypted to ensure that even if the data is stolen, it cannot be accessed by unauthorized persons. In addition, it is necessary to implement monitoring and logging of core secrets and services, establish monitoring and logging mechanisms, track network activities and events, discover abnormal behaviors in a timely manner and take corresponding measures, and conduct regular security assessments and penetration tests to discover and repair potential security vulnerabilities and weaknesses in a timely manner.
In addition, organizations need to strengthen collective cybersecurity awareness and ensure the security of corporate networks, including the use of firewalls, intrusion detection systems, and security software to prevent unauthorized access and malware intrusion. and regularly update operating systems, applications, and security patches to fix known vulnerabilities and security issues. It is also recommended that businesses use strong passwords and multi-factor authentication, enabling multi-factor authentication to increase the security of their accounts.
Sangfor experts' suggestions on strengthening the security status monitoring of sensitive data terminals will help enterprises comprehensively improve their data security capabilities and make further progress in their development.
*In: NetEase Finance.
Gonggong ** Society