Feeds

Electronic forgery menaces humanity

Bite you in the rear

  • alert
  • submit to reddit

Internet Security Threat Report 2014

Electronic forgery is becoming a greater risk as more company information is stored electronically. But many organisations are ignoring the issue.

About 80 per cent of all company information is stored electronically, according to Fran Howarth, Security Practice Leader at Bloor Research, yet the most valuable and sensitive information is most often left unguarded. BT’s principal security consultant, Paul Hanley said: "The issues we have with electronic documents are they are very easy to open, to lend, modify and save. Electronic document forgery is one of the greatest emerging security threats which organisations will need to address."

Falsified corporate information such as financial press releases - as in the Emulex case in 2000 - or the possibility of forged bank statements grab most of the attention. But doctored expense claims and the like are also a potential problem, according to Hanley.

He made his comments during a recent debate on e-document forgery in London organised by Adobe. Figures on the financial impact of e-document forgery were thin on the ground but panelists agree the firms were giving insufficient attention to application or document management risks when formulating security policies. Firms are relying too much on firewalls and anti-virus software, according to Mark Wheeler, European group marketing manager at Adobe.

"A lot of investment has been around the movement of information and stopping people from actually penetrating the company’s ‘castle walls’. What we have been seeing is less investment in actually protecting the core assets, which is the actual documents, information and content that surrounds a business."

Professor Jim Norton, senior policy advisor at the Institute of Directors, reckons a lack of understanding of electronic document forgery and new terminology are confusing the issue.

“We now have old crime [fraud], but a wonderfully enhanced range of tools for carrying it out. It is actually the people part of this that comes to bite you in the rear. Technology can minimise the exposure to this people risk," he said. ®

Relaxed stories

Man arrested in Net hoax sting
Californian faces 100 years in jail and £10m fine for false press release
Adobe anti-counterfeiting code trips up kosher users
US man sued for Extreme share ramp scam

Intelligent flash storage arrays

More from The Register

next story
Knock Knock tool makes a joke of Mac AV
Yes, we know Macs 'don't get viruses', but when they do this code'll spot 'em
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
Shellshock over SMTP attacks mean you can now ignore your email
'But boss, the Internet Storm Centre says it's dangerous for me to reply to you'
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
DEATH by PowerPoint: Microsoft warns of 0-day attack hidden in slides
Might put out patch in update, might chuck it out sooner
BlackEnergy crimeware coursing through US control systems
US CERT says three flavours of control kit are under attack
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The hidden costs of self-signed SSL certificates
Exploring the true TCO for self-signed SSL certificates, including a side-by-side comparison of a self-signed architecture versus working with a third-party SSL vendor.