The OcuCloud Blog

CLOUD SECURITY

Keeping your critical data safe
Recent Posts

Coronavirus & remote working: The future of business

 
 

Coronavirus Remote Working and Information Security

 

The next few months will shape the future of the work environment forever. The coronavirus pandemic has forced businesses to rush, adapt and adopt remote working. For businesses the cloud has made remote working a possibility. Businesses that have on-premise infrastructure are now re-evaluating their IT. In order to allow their employees to work remotely, businesses are ceasing control of their on-premise information and entrusting a third-party cloud provider to host this information. Businesses now rely on cloud provider security.

Cloud providers spend millions of dollars to secure their platforms. They provide security in the form of Identity Access Management (IAM) tools that ensure outsiders (like hackers) are kept out of the cloud and that employees go to the right place in the cloud. Employees need access to business information in order to do their jobs. Cloud providers take no responsibility for employee actions. Businesses must provide their own security when it comes to their employees.

While external threats, like hackers make for great news, employees are far more dangerous. Employees have been given the keys to the kingdom. Unlike outsiders, employees know exactly where a business’ valuable information is, how to access it and what that information is worth. The risks are compounded as employees are now accessing business information 24 hours a day outside the office, from anywhere, using mobiles, laptops and tablets.

34% of all reported security breaches are caused by insiders. Diverse and dangerous in nature, employee security breaches range from taking client information to a competitor, deleting a business’ entire database, to creating fake accounts for fraudulent payments.

See a demo of how OcuCloud allows businesses to adopt remote working by:

  • Doing all the heavy lifting to prevent employee security breaches without the need for security experts
  • Providing unparalleled visibility into what’s going on with information – see who, where, how and why
  • Allowing full cloud functionality, maximise employee productivity while maintaining employee privacy

95% of businesses are concerned about employees. OcuCloud solves this pain point. OcuCloud prevents malicious and negligent employee actions.

OcuCloud is helping small, medium and corporate enterprises implement remote working with:

  • Recordings of valuable business information to protect this information
  • Advanced Multifactor Authentication that ensures the person accessing valuable business information is the employee and not someone else using the employee’s credentials or device
  • Single Sign On Portal that manages business sanctioned cloud services

In these uncertain times, remote working is essential to continuity of business operations. Security should not be overlooked in the haste to get employees working from home. The consequences of a security breach could be devastating – fines, reputation damage and financial loss.

To find how OcuCloud can ready your business to initiate remote working safely, book a demo here today.

 

Share This Now:

JetBlue – To Good to be True

JetBlue Employee Fraud

Tiffany Jenkins, a Boston Logan Airport gate agent, urged friends and family to purchase cheap tickets from JetBlue (for e.g. $45 tickets from California to Las Vegas) and then she would change the inexpensive ticket to a costlier international destination.

She made use of the “involuntary exchange” system function that is usually used for passengers that have experienced a death in the family or missed their flights.

Over a year and a half, Jenkins upgraded 505 flights for more than 100 various people.

Jenkins cheated the airline out of $785,000

OcuCloud’s cutting edge technology does all the heavy lifting when it comes to security and compliance, preventing malicious, negligent employee actions. Businesses now harness greater cloud utility and computing mobility without the need for security experts. OcuCloud provides unparalleled visibility into what is going on with valuable business information. Simply type in an action and watch the video. Clients love OcuCloud. Security and compliance couldn’t be easier.

Book an OcuCloud Demo Today!

She has pleaded guilty to wire fraud, potentially faces 20 years in prison and a $250,000 fine.

Share This Now:

Your cloud security is ruining your productivity!

Cloud Security Restrictions may be ruining employee productivity

Cloud Security and Employee Productivity

Businesses are spending billions of dollars each year to transition to the cloud and take advantage of the efficiencies the technology offers.

The cloud is boosting employee productivity:
• Employees can now work from anywhere
• Collaborate on projects
• Access the cloud 24/7

However, businesses are missing out on the true potential of the cloud in the name of security.

OcuCloud’s advanced software keeps valuable business information safe by:

• Enabling you to identify and prevent malicious, negligent employees and their actions

• Video recordings of valuable information allow you to easily find and watch what’s being done with this information

OcuCloud keeps business’ valuable information safe in the cloud without impacting employee productivity

Click here to schedule a quick demo!

 

Security vs. Productivity

Security is essential, however, it can be detrimental to productivity and can counter the benefits of moving to the cloud.

Cloud functionality is being restricted, for example:

• The ability to download reports

• Access to the cloud platforms on mobile devices

These limitations are severely hampering productivity, ultimately hurting your business’ bottom line.

When employees require access to certain functionality, there is a back and forth conversation between business units, a time staking and onerous task. This increases costs and demands on IT and other business units. In circumstances full rights are granted or sensitive information is shared, defeating the entire reason for implementing the restrictions in the first place.

These controls create a false sense of security while failing to prevent security breaches.

For example:

• A rogue sales person may not be able to exfiltrate a client listing, but they are able to delete records, enter misleading data and alter banking information.

• Employees that are leaving an organization are high risk. These employees have access to valuable business information. Most security controls focus on shutting off access only once the employee has left. They neglect to address the increased security risk prior to this time frame.

Information sharing between devices and applications can render security ineffective. For example, businesses’ contacts on employees’ mobiles can automatically be merged with personal contacts. This means employees could already have valuable business information on their phone. They wouldn’t need to download a report to get this data.

This security, furthermore, fails to:

• Negate negligence. Without accountability employees transgress.

• Address privileged users with unfettered access.

What if there was a way to keep business information safe without limiting the cloud or employee productivity?

There is, with OcuCloud – Get the full, unrestricted benefits of the cloud:

  • Maximise employee productivity without compromising security

  • Introduce previously restricted features such as mobile computing (BYOD) whilst maintaining security

  • Improve your security posture

  • Comply with regulatory standards

To see how OcuCloud works, book your demo here today!

Share This Now:

High Turnover Employees and your Security

High turnover employees are compromising your security

The requirements of the role

I recently came across the following excerpt from a job description for a part time customer service rep role at a top tier health care provider.

‘Performs all duties in compliance with laws, regulations and policies. Adheres to security policies. Maintains confidentiality of health records and client information.’

All of the job descriptions that I came across were lengthy, outlining responsibilities and required skills. However, this job description stood out from the others. It was the only one that outlined the need to know security policies and requires the maintenance of client confidentiality. I looked at approximately 15 other job ads and there was no mention of these requirements at all. It was refreshing to see this organization had clear expectations regarding security. They had taken a strong stance to ensure employees understand their obligation when they walk into their new position at this organization.

Security Risks and Accessibility of Information

It’s concerning when you think about all the customer services reps / administrators that have access to your private information. Your credit card providers, phone company, even your gym, have your information. I for one want to know that my personal information is being adequately looked after. My private information is valuable to criminals and if it were leaked I would be devastated.

OcuCloud’s advanced software keeps valuable buisness information safe by:

• Enabling you to easily identify and prevent malicious, negligent employees and their actions

• Video recording valuable information so you can see what’s being done with this information

• Indexing employee actions against videos so you can easily find and watch actions of concern on valuable information without watching entire videos

Click here to schedule a quick demo!

What’s particularly worrying is customer services reps / administrators, which traditionally account for businesses high staff turnover rates, have the least to loose and the most to gain, have unfettered access to my information.

I however do not have this concern when it comes to walking into my bank and dealing with the bank tellers. I will happily hand a teller $10,000 in cash and not bat an eyelid, expecting all the funds to be deposited into my account without so much as a penny in dispute. Why is this? Because adequate checks and balances have been put in place. The bank has security and if there is ever a dispute, this will be the first port of call. High turnover (and often under paid) tellers know this and there is rarely an incident.

Stop High Turnover Employee Security Breaches

High Turnover employees are integral to your business. They work with your valuable business information. It only takes one employee to cause irreversible damage. Why chance it?

OcuCloud records valuable business information enabling you to keep that information safe. When employees know that valuable information is being recorded they don’t commit malicious and negligent actions on that information. In the same way as a bank uses security to keep your money safe, OcuCloud now provides security to keep your valuable business information safe.

Find out more today – contact us here.

Share This Now:

Employee Bribery at Amazon

Employee Bribery at Amazon

Background – Amazon, Employees and Bribery

According to recent findings, Amazon employees are providing classified information to intermediaries. This information is then distributed to independent sellers that use it to obtain an unfair advantage on Amazon’s eCommerce platform.

Middlemen acting on behalf of sellers approach Amazon employees offering cash inducements (from $80 to more than $2000).

The restricted information pertains to:

  • Search engine optimization techniques to rank higher than competitors within product listings
  • Methods for deleting negative customer reviews
  • Means to restore banned accounts

Implications for Amazon

This confidential information could have serious implications for Amazon given the self-regulating and efficient nature of their marketplace.

OcuCloud’s advanced software keeps valuable business information safe by:

• Enabling you to easily identify and prevent malicious, negligent employees and their actions

• Video recording valuable information so you can see what’s being done with this information

• Indexing employee actions against videos so you can easily find and watch actions of concern on valuable information without watching entire videos

Click here to see how!

Amazon Reacts to Allegations

Amazon is currently investigating all allegations and has released the following statements “We hold our employees to a high ethical standard and anyone in violation of our code faces discipline, including termination and potential legal and criminal penalties,”.

Merchants are also facing a backlash from Amazon if caught “We have zero tolerance for abuse of our systems and if we find bad actors who have engaged in this behavior, we will take swift action against them, including terminating their selling accounts, deleting reviews, withholding funds, and taking legal action.”

Several workers locally and internationally have already been fired for inappropriately accessing information that has been misused.

Some employees working as customer support have had access to internal Amazon information restricted. This included information pertaining to specific product performance or trending keywords.

Amazon has also deleted thousands of dubious reviews, limited sellers’ access to customer data on its platform and quashed certain methods that force products to rank higher in search results.

The Prevalence of Bribery

This report is particularly concerning. It highlights that all companies even those that are well-resourced like Amazon are struggling to address malicious actions by employees. Businesses are becoming more and more susceptible to their employees being bribed, as the quantity and value of information that employees have access to increases.

OcuCloud’s advanced software stops employee bribery by preventing malicious and negligent employee actions to learn more click here.

Share This Now: