WikiLeaks, the insider threat and how UserLock and FileAudit can help
The recent classified data disclosures found on WikiLeaks have raised strong concerns about mitigating insider threats in military and governmental Information Systems.
The soon to come disclosure of confidential records from private enterprises should also draw attention from every IT Security professional.
Julian Assange revealed in an interview with Andy Greenberg of Forbes that WikiLeaks is about to release confidential information from a major US bank, as well as from pharmaceutical, financial and energy companies.
The way this information has been obtained underscores the problems surrounding access controls and malicious insiders. Beyond the WikiLeaks buzz, insider threat is continually occurring and will undeniably remain a significant issue.
At IS Decisions, we have been taking this fact into account for 10 years and we developed 2 software solutions, UserLock and FileAudit, whose main goal is to protect Microsoft Windows networks from careless or fraudulent users, thus efficiently minimizing insider threat.
UserLock (awarded “Best of the Year 2010” by PC Mag) secures access to Windows networks and mitigates vulnerability by:
- restricting simultaneous sessions
- limiting user access to the network
- providing administrators with remote session control, alert options and advanced reporting for session analysis.
UserLock significantly reinforces Windows infrastructures security by giving network administrators the ability to:
- implement and enforce efficient restriction and access policies for Windows networks (LAN and WAN)
- be alerted when specific events occur (accepted logins, denied logins…) by user or user group
- remotely log off or lock a user session
- monitor in real time all connections on the network
- automatically log activity and generate comprehensive session reports and statistics
FileAudit (whose “simplicity and effectiveness” have been underlined in a review published on TechRepublic) monitors, archives and reports on access (or access attempts) to sensitive files and folders stored on Microsoft Windows systems.
FileAudit instantly gives a comprehensive list of:
- read/write accesses
- file ownership changes (accepted or denied)
- permission modifications (accepted or denied)
Each record details:
- the user
- the domain
- the date and time of connection and disconnection
for:
- a file
- a selection of files
- a folder and subfolder
- a selection of folders and subfolders
Full details about UserLock and free fully-functional trial version download
Full details about FileAudit and free fully-functional trial version download
