Senior database administrator admits stealing more than 8 million account records 
(04/12/2007)
A senior database administrator for a consumer reporting agency, the Fidelity National Information Services, in Florida has admitted stealing more than 8.4 million account records and selling them to a data broker for $580,000 over five years.
Alan Bentley, VP International, Lumension Security, is concerned by the ease at which the administrator was able to siphon the consumers’ sensitive data and advises companies to take steps to protect themselves against this kind of threat.
“Data theft is becoming more and more common across the globe and the Fidelity National Information Services case is just another example of how easy it is to remove sensitive data from an unprotected corporate network.
“William Gary Sullivan’s potential 10 year prison sentence and $500,000 in fines will certainly act as a deterrent to other tempted employees. However, prevention is better than the cure. Most data leaks occur at the endpoint and unmanaged removable media and applications can easily open the floodgates for data to escape into the wrong hands.
“By simply managing the data flowing to and from network endpoints, and auditing the use of applications and devices, this can be avoided. Employing a ‘known-good’ state allows only authorised applications and devices on to a network, and governs the extraction of data, decreasing the threat.
“Companies need to take this threat seriously and need to combine technology with clear strategies and policies to prevent security breaches. To do otherwise could leave consumer data at risk and put a company’s reputation on the line. The technology is out there to prevent future William Gary Sullivan’s stealing sensitive data.”
Related topics: Data management and data security
Print version | 
Email to a friend | 
Related articles
Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.
Other Security news and resources
Security News
Suppliers Directory
Jobs forum
Classifieds
Knowledge base
White papers
Research library
Security books
Special reports
Security interviews
Security companies
Security events
Security links
Security market
Product channels
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products
IT Security white papers and research library
Access Control Authentication Data Management Data Security Digital Signatures Email Security Identity Management Internet Security Intrusion Prevention Network Security Remote access security Security Management Security Policies Security Software Security Threats Virus Detection Software Virus Protection VPN Vulnerability Assessment Wireless Security
Security books, guides, standards and toolkits
RFID and Smart Cards books, guides and reference documents Biometric books, guides and reference documents CCTV books, guides and reference documents Intruder alarms and intrusion detection systems books, guides and reference documents Monitoring and surveillance books, guides and reference documents IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits Fire, Health & Safety books, guides and reference documents
