Avoid file sync and share security slipups

FREE

Become An Insider

Sign up now and get free access to hundreds of Insider articles, guides, reviews, interviews, blogs, and other premium content from the best tech brands on the Internet: CIO, CITEworld, CSO, Computerworld, InfoWorld, ITworld and Network World. Learn more.

Are your employees using free file sync and share apps to share sensitive enterprise data? If so, default public setting could be opening links to your critical data to the world

Free file sync and share (FSS) services such as Dropbox typically come with security and privacy settings set to "public" by default. When a user shares a share link to corporate data, anyone who comes across that link can get to the potentially sensitive information. Some free FSS apps don't offer privacy settings. Even if a user wanted to, they could not change the public settings to private in order to protect the data.

[Box, Dropbox, or drop both?

[ It's time to rethink security. Two former CIOs show you how to rethink your security strategy for today's world. Bonus: Available in PDF and e-book versions. | Stay up to date on the latest security developments with InfoWorld's Security Central newsletter. ]

Here is one way those share links have escaped into the open. When an intended party receives a share link by email, their email client and / or security settings may prevent them from clicking on it as a live link. So, they copy the link and attempt to paste it into the URL field in their browser. Many users mistakenly paste the share link into the search field, which typically uses Google, the search engine people use most, to present search results for that link.

Learn More

To continue reading, please begin the free registration process or sign in to your Insider account by entering your email address:
Recommended
Join the discussion
Be the first to comment on this article. Our Commenting Policies