@Risk

Focused on supplier risk issues for business leaders

Verizon Report: Most Data Breaches Avoidable

September 01, 2010 | No Comments →

Here’s a remarkable statistic: Among the more than 900 electronic records breaches that Verizon Business experts investigated last year, a whopping 96 percent could have been avoided if security basics had been followed.

That’s right. Nearly all of these breaches could have been avoided; only 4 percent of the breaches analyzed required difficult and expensive protective measures. In addition, most victimized organizations (87 percent) had evidence of a breach in their security logs, but overlooked these red flags due to a lack of staff, tools or processes.

The new 2010 Verizon Data Breach Investigations Report , which for the first time was prepared in collaboration with the US Secret Service, is filled with other fascinating results, too –all of which offer some important perspective about the vulnerability of business data and the most effective approaches for mitigating cybercrime threats.  For instance, the report also reveals that: (more…)

Does Working While on Vacation Put Your Company at Risk?

August 12, 2010 | Comment (1)

You check email when you’re on vacation. You bring a company laptop on your trips. Taking “the office” on the road has become so commonplace that these days, we generally don’t think twice about it.

But, a new study from Credant Technologies offers some interesting insights and more than a few words of caution. After all, in some cases, accessing company data from mobile devices can seriously impact corporate security.

Consider these findings. Credant polled 1,000 office workers in London and found that: (more…)

Information Collection by Google Highlights Vulnerability of Data Networks

May 27, 2010 | Comment (1)

How secure is your data network? Are you satisfied that both your business and personal information are adequately protected? Can you ever feel completely satisfied about that?

The latest news about Google’s penchant for data collection underscores just how vulnerable our networks can be.

In case you missed the story, Google is in hot water for mistakenly collecting samples of payload data from open (i.e. non-password-protected) WiFi networks.

In a blog post at its website, Google admits that while it was gathering data for use in location-based products like Google Maps for mobile, it inadvertently collected samples of private, non-password-protected information, as well. The data was collected in all the countries where Street View information has been catalogued, including the United States and parts of Europe.

The company says it never used that data in any Google products. Plus, as Google explains it, any information collected was typically only snippets –because the Street View cars gathering the data are “on the move” and use WiFi equipment that automatically changes channels roughly five times a second.

Still, I’m not sure I find that particularly comforting. For me, the questions at the heart of the matter are: How and why was Google collecting the data in the first place? Here’s the company’s response: (more…)

Are Bigger Supply Chains Better?

February 03, 2010 | No Comments →

big chainToday’s supply chains are more global, more complex –and simply bigger –than ever before. But, does that mean they are better?

Not necessarily, according to Thomas Wailgum at CIO.com.

In his article, Wailgum points out that expanding supply chains make visibility increasingly difficult, and as he says, “ That visibility is key.”

I agree. Most companies today are struggling to keep up with their sprawling global supplier networks. They still need to take the first, fundamental steps to improving visibility and creating a more holistic approach to supplier relationships.  They still need to automate supply chain processes. (more…)

Aravo Poll: Most Fortune 1000 Companies Manage Risk for Less Than 20 Percent of Suppliers

January 12, 2010 | Comments (4)

I expected the percentage to be low, but when the final results were calculated, I have to admit, my jaw dropped.

In a recent survey of financial, procurement and risk executives who participated in Aravo’s supply chain risk webinar series, we found that: (more…)