A raft of laptop thefts and data breaches have hit the headlines in recent weeks - ranging from the IT security professional who works for Netegrity who left his laptop unguarded at the Gartner IT Security Summit to the wannabe pop starlet Natasha Bedingfield who apparently had her laptop containing new material stolen from an airport (of all places).
To make matters worse for the Bedingfield family, but arguably better for the rest of us, news emerged earlier this week that Natasha's equally talented (read into that what you like) brother Daniel was recently the victim of hackers who cracked his laptop and deleted, rather than stole it would seem, a load of new songs he had been working on.
Everybody's a critic, and while the world of music may owe these individuals a debt of gratitude, silicon.com obviously can't condone their actions.
But these incidents less than three weeks apart bring into the popular mainstream the issue of laptop security. It's something the IT industry has long known about, but the Netegrity incident mentioned above suggests even 'those in the know' aren't as clued up as they should be - even though the assumption was made that a Security Summit was about as safe a place to leave a laptop as could be.
Critics of that assumption would argue that when surrounded by your rivals your laptop should be as close to your chest as possible.
It seems taking any data out and about is still a recipe for disaster and while the Bedingfields may be upset that they've lost some pop music there are far worse instances of data loss out there.
The infamous tale of advertisements across America, appealing for the return of a stolen laptop which contained years'-worth of AIDS research, stored nowhere else, springs to mind.
The cost of replacement is pretty black and white. If you paid £899 in the shops that's the likely cost of replacement, depending on your insurance or your desire to replace like for like.
But imagine telling your boss that you've lost the full year's accounts, the customer database, the presentation for today's make-or-break sales pitch. Imagine telling your employer that his company's very existence was left under a table in the Dog & Fox or in the back of a black cab heading back into town. Don't assume it couldn't happen to you, and ensure you have the appropriate measures in place - back-up and protect - for when, not if, it does.
Nobody wants to lose a laptop. That's a given. We certainly don't want to go through the ordeal of having it stolen, but more important is the understanding that is currently lacking, that it is quite likely to be the information on the laptop that is more valuable than the laptop itself. Your boss won't sack you for getting your laptop stolen. But if you hadn't backed-up for six months and your password was 'password' there may be no saving you.
Comments
There are 5 comments. Join the discussion
1. Justin Wheatley
Biometric protection? Can anybody direct me towards or recommend an inexpensive form of biometric protection for laptops?
If laptops were useless to the anyone without some means of unlocking the BIOS-lock and/or hard-drive encryption, it would be (or at least gradually become) a waste of time to steal them.
2. Ruprecht
Justin, there are some laptops on the market with 'bio-locks' ;o) as an option.
Locking the BIOS is an idea but users have trouble remembering another password (poor dears) and with most laptops it isn't very tricky to get around although DELL do a better job than most on this front.
HDD encryption is part of XP if you want it switched on.
Here's an idea...we all know that laptop bags are an easy spot for a thief and even if the machine is protected it'll be knicked and chucked in the river if it's useless...why don't the manufacturers co-ordinate their efforts and create a "BIO-Locked PC, don't bother" logo and we can put the tag on our bags?
That or teach users to look after the bloody things!!!!!
3. Robert Campbell
What you deploy against this all really depends upon the nature of the threat you percieve...
Casual theft: Most people, IT managers and the like, fall into this category. They think the laptop will be stolen and then formatted and sold at the nearest car boot sale. Wrong laptops are being targeted for sale to those that will use the data for ID theft.
Gat some HDD encryption installed for less than £100 protect absolutely the real asset: the data. Utimaco's SafeGuard Easy is the "dogs"; IBM have sanctioned it and are now offering it with every laptop. Utimaco were at and were sponsoring the Gartner conference :-)
http://www.ecommnet.co.uk/products/laptop.asp
4. Robert Campbell
Well actually no, the BIOS can be re-set and the protection removed, in most cases a good old fdisk /MBR will kill off any HDD encryption software.
What's really needed is the wider implementaion of the TPM Trusted Computing Initiative modules, such as now available on IBM and some HP lap-tops [and servers]. This prevents hardware changes being made e.g. HDD being swapped between PC's. It's all to do with a PKCS#11 device embedded on the motherboard you see.
5. anonymous
Rule of thumb: if they have unrestrained physical access to the computer, the data is no longer yours. REGARDLESS of password or most other "security" measures.