Managed File Transfer Solutions | Secure File Transfer Software | UK » Data Security

Most UK firms lack data transfer visibility, Ipswitch study shows

Lindsay Lewis — Tue, 07 May 2013 10:19:07 +0000

In a recent article from Computer Weekly.com, Rich Kennelly, president of Ipswitch’s File Transfer division discussed the key findings of a recent study relating to the visibility of data movement in UK businesses. Needless to say, the stats were concerning to say the least…

Four out of five UK companies have little or no visibility of data movement, a study has revealed.

Half of more than 100 firms polled by Ipswitch File Transfer admitted they have no visibility of files being transferred within and outside their organisation.

A further 30% said they have only limited visibility, despite 64% of respondents saying secure file-sharing was vital to the security of the company data.

“A high level of visibility is critical for any organisation that is serious about protecting its most valuable asset – information,” said Rich Kennelly, president of Ipswitch’s File Transfer division.

“The ability to know who is moving data, where, when, how and why across an enterprise, is crucial, not only for data security,” he said.

Kennelly said data management and visibility is also important for streamlined workflows that improve productivity, and meeting compliance requirements.

Regarding who should be blamed if valuable or confidential company data file are sent or shared unsecured, 52% of respondents said it was a collective responsibility.

More than a third said accountability should lie with the employees; 7% said management should be blamed for not having robust policies in place; and just 3% said IT departments were to blame.

“We’re seeing a real shift in attitude, understanding and acceptance of managed file transfer technologies,” said Kennelly.

“Users know that information is at the core of their business and crucial to its existence, competitive advantage and longevity.”

The survey shows there is now greater understanding that efficient data security demands collective responsibility.

However, Kennelly said users cannot play their part unless the business provides easy-to-use, accessible and simple solutions that make their jobs easier.

The survey reveals that moving sensitive information by email is most prevalent, with 44% admitting to sending classified or confidential materials by email at least once a day.

Almost half admitted to using personal email accounts to send company files, with 21% blaming the slowness of work email, difficulties in connecting and limited file sizes.

Some 11% said they used personal email because their company did not monitor what they send and 8% admitted keeping business documents to use at their next place of work.

More than a quarter of respondents admitted using unsecured file-sharing websites and cloud services to share work-related files, while almost two-thirds confess to using USB drives, smartphones, tablets and other personal devices for backing up corporate files.

About Us

Pro2col are a Certified Ipswitch Elite Reseller based in the UK. Since 2003 we have been helping companies of all shapes and sizes to tackle their data transfer challenges and maximise their investment in secure managed file transfer products. If you’d like to know more about how to attain full visibility and control over the data moving into, out of and around your business, please don’t hesitate to contact us on 0333 123 1240.

The post Most UK firms lack data transfer visibility, Ipswitch study shows appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Dropbox Alternative – Day Two at InfoSecurity Europe

James Lewis — Thu, 25 Apr 2013 08:45:38 +0000

With the sun beating down outside you could have been mistaken in thinking the IT community would stay away from Earls Court, but day two of InfoSec was packed.

Pro2col had the pleasure of assisting on the Globalscape stand, on what is traditionally the busiest day. With Chaz and Chris Thacker both providing demos the stand was busy and the message was coming through loud and clear; IT Professionals want a Dropbox Alternative.

A study by security distributor e92plus that I read at the show highlighted that some 76% of IT Professionals in the UK had Dropbox at the top of its list of banned
technologies. This was very much reflected by the conversations we had and the demonstrations of Globalscape solutions provided.

The most popular solution by far was Mail Express. Visitors loved the web based functionality and MicroSoft Outlook plugin. The Drop Off Portal also proved a big success as IT admins learned how they could provide a hands off facility for large files to come into the business without the need for setting up FTP accounts or clogging up email servers with attachments.

If you’d like to learn more about how Globalscape solutions could help your business Replace Dropbox, contact Globalscape’s UK Master Partner here.

The post Dropbox Alternative – Day Two at InfoSecurity Europe appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Ipswitch MOVEit Ad Hoc shortlisted for SC Magazine Technology Award

Jeff Whitney — Fri, 22 Feb 2013 09:02:43 +0000

Ipswitch File Transfer MOVEit Ad Hoc has been shortlisted by SC Magazine for a Technology Award in the category of ‘Best SME Security Solution’. Our secure person-to-person file transfer solution has been recognised among the most innovative products addressing the security demands of smaller enterprises today. Winners will be announced at the SC Magazine Europe Awards on 23 April, to be held at London’s Hilton Park Lane.

MOVEit Ad Hoc ensures secure sending and receiving of sensitive files and messages between individuals and groups. It provides peace of mind for businesses sharing mission critical digital information with their employees, partners and customers using Outlook or any simple browser interface. A recent Ipswitch study reveals that more than a third of people sharing information are doing so insecurely, through personal email or consumer file-sharing sites. MOVEit Ad Hoc provides a simple yet secure solution to sharing files which avoids this increasingly prevalent risky behaviour.

For over 20 years Ipswitch has been a leader in providing secure Managed File Transfer solutions. So it is an honour to be recognised by SC Magazine, not just for ourselves, but on behalf of the many businesses and industries that already depend upon Ipswitch File Transfer to protect their most valuable and sensitive information. It’s also particularly rewarding for MOVEit Ad Hoc to be recognised on the heels of our recent launch – our easy-to-use, IT-approved, person to person file transfer solution.

SC Magazine is the world’s largest dedicated IT security publication, serving the industry for over 15 years. The SC Awards Europe is among the most coveted and prestigious accolades for the information security industry, honouring vendors that deliver the most innovative security technologies.

A panel of industry judges from the information security profession will now pass judgement on the products and services put before them, including Ipswitch File Transfer MOVEit Ad Hoc. Review the shortlist for every category here. Read the latest awards build-up and coverage here. Book tickets for the event here, and find out more about MOVEit Ad Hoc here.

Guest Blog by Jeff Whitney, Vice President of Marketing, Ipswitch File Transfer

The post Ipswitch MOVEit Ad Hoc shortlisted for SC Magazine Technology Award appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Are Employees Putting Your Company’s Data at Risk?

Lindsay Lewis — Wed, 30 Jan 2013 08:35:42 +0000

One of our key vendors, Ipswitch File Transfer conducted a survey of over 200 IT leaders and practitioners with security responsibilities about person-to-person file-sharing practices. From the results that they gathered, this is what they found…

These results should alarm IT and security professionals. Findings show that employees are circumventing IT staff by sending confidential and highly sensitive company files via means that are insecure and lack auditability. The results serve as a graphic reminder that when company systems hinder employee productivity, it’s both a security risk and bad for business.

There’s no way to sugarcoat the results of the survey, the highlights of which you can see in the Infographic below. Click here to register to receive the full research report results and recommendations.

The post Are Employees Putting Your Company’s Data at Risk? appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Cloud File transfer Services Hosted in the UK are not subject to the Patriot Act

James Lewis — Wed, 23 Jan 2013 10:53:43 +0000

Over the years I’ve spoken to many clients about hosted data transfer systems, and the security implications of where your data is stored. Generally there arelots of levels of sensitivity of data that a business might have. Sometimes the more commercial, cloud based technologies can fit, e.g. sending marketing collateral to a printers wouldn’t generally be considered sensitive data. Over recent years however, there has been a worrying increase in the amount of enterprises who have either mandated the use of cloud based technologies for the distribution of sensitive data, or turned a blind eye to what employees are using off of their own back. Naturally there are issues surrounding compliance here and potential brand damage should the data find its way into the public domain, but that’s been covered many times before and isn’t the focus of this blog.

A few days ago I spoke with an international consulting firm (who shall remain nameless). They confided in me that the organisation didn’t have a managed file transfer solution in place to cater for the ad hoc transfer of data between internal staff and external parties. They disclosed that a decision had been taken to purchase a wetransfer.com channel for their business, but this IT Manager was very concerned about compliance and security of his data. Having had some experience of wetransfer in the past I suggested that additionally he should be concerned about where his data was stored. Being a predominately US based company, it could be possible that their data was making its way to their US data centres and therefore be subject to the Patriot Act. I wasn’t scaremongering, this is true as there is no way to define which server your data resides on as it’s a consumer grade solution, predominantly adopted by enterprises to get them out of a hole.

When looking at securely transferring business critical data I can see why a company may opt to adopt a ‘big brand’ cloud solution, but its worth pointing out they’re generally big brands because they appeal to the masses and are consumer grade. When selecting a cloud based technology its worth asking these questions:

Where will my data be stored?
What levels of physical security are in place at these data centres?
What security is in place to protect my data at rest in these locations?
Is my data encrypted in transit and at rest at all times?
Who within the organisation supplying the service has access to my files?
What controls am I offered to administer and manage the service being used across my organisation?
What compliance or data security standards do you adhere to?
What logging and tracking do you provide to help me achieve compliance?

This list outlines some of the most important questions and is a good starting place. If you’d like to discuss your file transfer requirements in more detail our consultants can help. We’ve been working with file transfer technologies for more than a decade now and are well placed to be able to detail your requirements and help you identify the best technology fit. Get in touch via our online form or call 0333 123 1240 or for International callers +44 1202 433 415.

The post Cloud File transfer Services Hosted in the UK are not subject to the Patriot Act appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Personal File Sharing in the Business: The Risks

Lindsay Lewis — Tue, 08 Jan 2013 11:53:17 +0000

It may be a new year, but we’re still facing the same old challenges on our return to the working world. Personal file sharing is one of those challenges. If employees are left to their own devices, the chances are they will turn to familiar consumer grade technologies such as Dropbox that were just not designed to adequately secure business data.

Micheal Osterman of Osterman Research succinctly summarises some of the key issues surrounding personal file sharing in his white paper, “Business-Class File Sharing Best Practices”. Here is an excerpt from the paper:

Excerpted from “Business-Class File Sharing Best Practices”

The Status Quo Doesn’t Work

Users are stymied because company email systems often do not permit file attachments of more than 10 to 20 megabytes to be sent, and it is not efficient at sending more than a few files at a time. Moreover, email doesn’t typically include a return receipt so the sender can know if the recipient ever received the email. Also, when email is used for file transfer, it imposes increased storage and bandwidth costs, slow message delivery, long backups, long restores, high IT management costs.
Many users will turn to their personal Webmail account because of their ability to send very large files through these systems. However, when users do so there is no IT visibility into the sent or received content, no tracking, no auditability, and no archiving. Moreover, corporate content can reside in personal Webmail repositories for many years, long after an employee may have left the company. While this makes life easier for users, it increases the risk to the organisation.
USB sticks, tablets and smartphones create the same problems: lack of security, higher costs, their likelihood of being lost or stolen, and the potential for content on them to be accessed by unauthorised parties.
Dropbox-like file sharing tools and cloud services can be effective, but they do not permit IT management or governance of content. And, they often are individual accounts and not under the sanction of IT which means that IT doesn’t have the visibility or insight into what is being transferred, nor does IT maintain any type of audit trail for this content.
SharePoint and similar tools are useful for sharing information if both senders and recipients are using it. However, SharePoint require the deployment of a dedicated infrastructure and training for end users, and it is not always easily accessible by remote workers or people external to an organisation.
Basic FTP client-server systems, while useful, require both the sender and recipient to have access to the FTP server to share information, which can be an ongoing provisioning burden for IT.
Physical delivery of information – such as CD-ROMs or DVD-ROMs that are burned and sent through overnight services – is expensive and the speed of delivery is slow

If you’d like to learn more about secure file sharing practices, you can access the full Osterman whitepaper here. Alternatively, if you’d like to discuss your specific file sharing challenges with one of our managed file transfer experts, please don’t hesitate to contact us on 0333 123 1240.

The post Personal File Sharing in the Business: The Risks appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Socitm 2012: Managed File Transfer for Councils

Lindsay Lewis — Wed, 28 Nov 2012 12:05:38 +0000

We’ve been working closely with councils throughout the UK to simplify, secure and streamline their file transfer, so we couldn’t miss the opportunity to attend Socitm 2012; the No. 1 UK ICT event for councils. The conference has kicked off today (here’s a breakdown of the programme) and the Pro2col team are ready and waiting to share the knowledge and experience that we have gained from working with councils to secure person-to-person file transfers and automate the movement of sensitive data into and out of the organisation.

On a similar note, this is the ideal moment to publically release our lastest e-book: The Council’s Guide to Secure Managed File Transfer, which is now available for download. It covers a range of issues surrounding the secure movement within councils including:

How to eliminate the problems caused when employees resort to insecure, non-compliant file transfer methods such as email.
Ensuring you meet with UK data security and compliance legislation including The Data Protection Act and PCI DSS.
Providing your employees with a quick and simple way to send and receive sensitive files both internally and with third parties.
Automating the transfer of files, saving time and money.
How to regain control over file transfer processes and user access.

If you’re at the conference and would like to speak to one of our managed file transfer experts, drop by stand 8 (piccy attached) – we’re always happy to help. If you’ve not been able to make it this year and you’d like to talk to us, please don’t hesitate to get in touch with the office on 0333 123 1240.

The post Socitm 2012: Managed File Transfer for Councils appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Managed file transfer set back after Java vulnerability in Mac OSX

James Lewis — Tue, 23 Oct 2012 09:35:29 +0000

TechWeek Europe yesterday reported that Apple’s latest Java update for Mac OS X not only fixes a number of security flaws, it also removes the browser plug-in from the user’s system. This is in response to long standing problems with Java vulnerabilities after six hundred thousand Apple Macs were infected with the Flashback worm earlier this year. Apple’s approach to controlling software updates for Mac’s resulted in patches written by Oracle for Java 6.x being rewritten and distributed compounding serious security flaws further with the inevitable delays. Apple is now only responsible for Java updates on Macs running OS 10.7.2 or below, therefore upgrading the OS to a later version will result in the use of Java 7 which is developed and updated directly by Oracle although it too isn’t without problems.

Whats the problem with disabling Java you may ask? Well its well known that Java is really the undisputed champion when it comes to carrying larger data sets through a web browser and most managed file transfer software products use Java, almost without exception! Why Java, well thats another discussion which has been very well documented over on the FileCatalyst web site and whilst Mac’s in general don’t account for the largest desktop market share, around 6.5% the lack of Java in OSX is a real problem for Mac users of managed file transfer solutions.

The resolution? Well Apple aren’t stopping users from running Java on their Mac’s rather ensuring that they take the decision to enable it, this however is likely to further strain relationships between Mac users and the predominately Windows based IT departments. I suspect that we’ll hear more about this over the coming weeks and months and given our focus on the creative marketplace we’ll keep you informed.

The post Managed file transfer set back after Java vulnerability in Mac OSX appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Managed File Transfer is for SMB’s too

James Lewis — Thu, 13 Sep 2012 09:29:20 +0000

Recent research suggests that the SMB sector is coming under an increasing number of cyber attacks from hackers and cyber criminals. Figures published by Symantec revealed that the number of attacks on companies with fewer than 250 staff had doubled in the six months to June 2012. Similarly AVG reported that it was predicting an increase on the £3.37 million of damage inflicted on UK SMB’s last year. Verizon confirmed that the majority of 855 data breaches analysed in their Data Breach Investigation Report had been inflicted upon SMB’s.

The question is; why are SMB’s being targeted? It would appear that the modest budgets available to small companies make them easier targets, giventhe lower level of expenditure on information security technologies. Especially since SMB’s frequently work as suppliers for larger organisations, making them a more attractive proposition to hackers than the more conventional direct attack on the corporate target.

What does this have to do with managed file transfer I hear you ask? MFT has generally been considered a technology more appropriate to corporate organisation’s – with its big price tag and grand title. Times are changing for the MFT marketplace and there are now some very comprehensive solutions available at really competitive prices. For those SMB’s considering how they should secure data transfers with their larger corporate customers, technologies exist at around the £4,000 mark which provide an equal amount of functionality as many corporate companies have.

To discuss your file transfer requirements, whether you’re an SMB or multi-national organisation, get in touch with Pro2col or give us a call on 0333 123 1240.

The post Managed File Transfer is for SMB’s too appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.

Managed File Transfer – Remote Access Removed or Remote File Termination?

James Lewis — Wed, 08 Aug 2012 15:28:17 +0000

Managed file transfer solutions are the ideal technology to share files securely with remote trading partners and customers. This is what they were designed to do and in the most part, they all provide a simple interface to achieve this. Some provide a web browser facility, whilst others offer additional plugins such as a Microsoft Outlook Plugin or less conventionally, a Lotus Notes Plugin. However the one common way in which the majority of these technologies work is for the file to remain on a web server, to be collected by the intended recipient. This then provides the system with an audit trail of when the file was downloaded and in most cases, to which IP address – confirming the users location.

This is great in most instances but imagine a situation where you’ve sent an email using the plugin within your email client of choice, only to later find that you’ve attached the wrong document. Worse than that, it contains sensitive customer or financial data – what then? You make a frantic call to your IT Help Desk asking them to delete the file or remove access to it. You then get confirmation from the kind Support Desk person to say that they’ve action your request. Great, you’re in the clear…. but upon returning to your email you see that your customer has already downloaded the file and you have the email notification to prove it. Where you usually greet the notification with a shrug of the shoulders in the knowledge that the managed file transfer solution has once again done its job, this time it leaves you cold!

Fortunately not all managed file transfer solutions are built the same. Some have DLP capabilities ensuring that sensitive data is quarantined whilst one vendor we work with provides a very unique capability, remote file termination. How is this done I hear you ask, well give us a call and we’ll tell you! Suffice to say, this type of technology provides the highest levels of security available therefore isn’t pitched at your general ad hoc file transfer users. It’s more appropriate for those companies dealing with extremely sensitive data, e.g. data needing to be exchanged between board members, patent information, IPO, MBO, acquisitions and mergers information and so on.

If your business has a requirement to move data in a more secure manner than your existing file transfer technology allows, speak to Pro2col as we’ve got technologies that can handle the most sensitive of data.

The post Managed File Transfer – Remote Access Removed or Remote File Termination? appeared first on Managed File Transfer Solutions | Secure File Transfer Software | UK.