You are previewing premium content. Become an Insider to read the full article.

Richi Jennings

The Long View

Preventing security threats from cleaning staff

. What's this?

TAGS:enterprise, Insider Content, keylogger, PC, physical security, pre-boot, rootkit, rootkits, security
IT TOPICS:Cybercrime & Hacking, Data Center, Desktop Apps, Hardware, Privacy, Security, Security Hardware & Software, Windows

By Richi Jennings (@richi ) - August 25, 2011.

Do you know who's in your building at night? Can you positively vouch for all those here-today, gone-tomorrow contract staff who clean and maintain your offices? Physical access is a worryingly simple vector for data-stealing malware, as we'll see in this edition of The Long View...

It's a truism in computer security that all the software in the world won't help you, if you don't have physical security. If you can't stop a Bad Guy walking up to your server in the middle of the night, you can't stop him from stealing your data or injecting malware into your system.

In other words, physical access trumps many software defenses.

Erecting a secure boundary around your server rooms obviously makes sense. Keeping your crown jewels under lock and key is always a good strategy. But what about your PCs? They're usually physically vulnerable to, say, office cleaning staff; and Bad Guys can use some powerful techniques to inject unwanted code into your machines.
Read on...

To continue reading, register here to become an Insider

It's FREE to join

Learn More

Already an Insider? Sign in

What is Tech Briefcase?

TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more

Bookmark content

Speed up your research efforts with content across the web.

Search and Store

Find the white papers you need. Create folders for any topic.

View Anywhere

Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.

Don't have an account yet?

How does Intel/McAfee make sense? I think I know...

Security in 2012: Let's start at the endpoint

Microsoft emergency .LNK patch: go get it! (and Halo2600)

Think Windows is insecure? You're wrong, says security firm Kaspersky.

Today's Top Stories

Essential browser tools for Web developers

Hands on: The new iPad

Microsoft cuts the prices of some Office 365 plans

Google works to overhaul its search

Mozilla will start Firefox silent updates in June

Preston Gralla: Big backlash is building against Windows 8. Will Microsoft listen?

Hot Posts

Apple's iPhone 5 plan rocks global e-supply chain

Posted by Jonny Evans |

The Google I/O Countdown Contest: Win a free Toshiba Excite 10 tablet!

Posted by JR Raphael |

Galaxy S III (S3) release date: Next week (sans LTE)

Posted by IT Blogwatch |

Free Insider Guide

Excel 2010 Cheat Sheet: Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.

Cybercrime and Hacking White Papers

Application Security Services - Government and Cyber Security: U.S. Public Sector Application Security Services bridge the gap between traditional application development processes and techniques, and the requisite security mechanisms needed to...
HP Cybersecurity Offerings: HP has been in the security business since our inception, providing critical security services to clients at every level of government and Fortune...
Streamline Compliance and Increase ROI: Streamline, simplify, and automate compliance related activities; especially those that impact multiple business units. This white paper from NetIQ, outlines solutions that will...

Cybercrime and Hacking Webcasts

WikiLeaks: How am I Affected?: The latest WikiLeaks episode has raised questions about how organizations and governments protect their sensitive information. While this incident was isolated, it has...
Analytics Without Limits: The Latest on Oracle Exalytics In-Memory Machine and Oracle Business Intelligence: Analytics at the Speed of Thought

What if you could run financial and operational planning cycles 10 times faster? Or monitor and adjust...
EMC and VMware Solution Track: The EMC and VMware Solution Track is a single destination for the most up-to-date resources on how EMC can enhance, extend and accelerate...

IT Newsletters

Get the latest technology news and analysis on critical issues in the enterprise.

Preventing security threats from cleaning staff

To continue reading, register here to become an Insider

It's FREE to join

Related Posts

Today's Top Stories

Hot Posts

Richi Jennings's Archive

IT Topics