A hand slips a CD into a brown envelope
Keep it safe: Just seven per cent of firms increase data protection during the application development and testing process

Lax data masking hits four in five firms

Study from Micro Focus and the Ponemon Institute finds 79 per cent of companies have suffered a data breach in the past year

Written by Sam Trendall

CRN, 18 Aug 2009

Almost four in five companies have been hit by a data breach in the past year as 70 per cent continue to ignore data-masking techniques, research has claimed.

Research commissioned by enterprise applications vendor Micro Focus and carried out by the Ponemon Institute surveyed 1,350 application development staff at UK and US firms with turnover between $10m (£6.1m) and $20bn-plus.

The past 12 months have seen data breaches at 79 per cent of respondents, with the same amount using live production data in application development and testing. But just 30 per cent of firms mask this data during the process.

Application testing takes place on at least a weekly basis at 64 per cent of companies, with 90 per cent claiming it happens once a month or more. A mere seven per cent of respondents said data protection procedures were more rigorous during development and testing than during normal production.

Micro Focus also expressed shock at the size of data being tested, with three quarters of companies using data files bigger than 1TB. Some respondents even reported using samples greater than 50TB in size. The Newbury-based vendor claimed this increased the risk of internal and external attacks or human error.

Stuart McGill, chief technology officer at Micro Focus, urged companies to act immediately to shore up their data-masking practices.

“Given the recent high profile of data breaches across the world and also the frequency with which testing takes place, it seems unbelievable that organisations still have not taken the necessary steps to ensure their data is secure during this regular process,” he said.

"In this difficult economic time, the last thing organisations want or need is to experience a significant data breach that can leave their own, or worse, their customers’ confidential information damaged or leaked."

Ponemon Institute chairman Larry Ponemon added: “It is understandable that organisations want to be efficient in this often time-consuming process, but cutting corners by not masking the data could cause irreparable damage to a company’s database and reputation if a major breach were to happen.”

  • Have your say
  • Send to a friend
  • Share
  • Print

reader comments

related articles

Shaking handsSoftware

Micro Focus makes play to buy Relativity Technologies

Software vendor unveils $9.7m bid for application modernisation specialist 08 Dec 2008

 
Security

Security VARs bank on HSBC windfall

Record fine levied on HSBC for failing to protect customer data could boost security sales, resellers hope 22 Jul 2009

Public Sector

Watchdog slams NHS data breaches

Health service highlighted as a data breach hotspot after reporting 140 incidents between January and April 26 May 2009

Public Sector

Government suppliers given IAS6 warning

New data protection standard will place more scrutiny on government suppliers 12 May 2009

Services

Channel urged to capitalise on lack of data destruction

Joint study by BT, Sims Lifecycle Services and three universities reveals the amount of sensitive data being discarded is increasing 07 May 2009

Strategy

In The Studio with CRN: Data Destruction

From illicit affairs to Sarah Ferguson's private address book - find out how important a service data destruction is becoming for the channel 08 Apr 2009

Security

Keep cyber-crime at bay online

Always protect your data online against fraud and identity theft, says Greg Day 06 Apr 2009

Security

UK firms still failing to stem data leaks

Seventy per cent of organisations suffered at least one incident in the past 12 months 07 Jul 2009

Management

Two-thirds of organisations hit by data breach in last year

Public sector and financial services the biggest culprits 08 Jul 2009

Security

Security study exposes enemy within

Risk posed by employees now rivals virus and malware intrusions as primary cause of data breaches 18 Nov 2009

latest news

Dell bids for fallen Exanet

PC giant on the brink of buying liquidated storage firm for a reported $12m 09 Feb 2010

ScanSource woos Avaya resellers with fast pricing

Distributor launches System Central 24/7 tool in the UK 09 Feb 2010

Synaxon celebrates 'record' membership

Organisation claims more established resellers are cottoning on to the benefits of its EGIS system 09 Feb 2010

More news

analysis and reports

Wireless LAN systems for the healthcare industry

The goal of a paperless hospital driven by wireless access that improves patient healthcare, expedites administration and streamlines operations.

A technology solution to align sales and marketing

Presenting best practices around people, processes and technology, this paper will help you produce more valuable customer relationships.

poll

A direct hit?

A direct hit?

Is Oracle right to take Sun's large accounts direct?

View poll results

David Critchley

PROMOTIONAL VIDEO - Accelerate your business with Cisco

Watch this Cisco promotional video to hear how the vendor can boost your business

money

CRN Web Seminar: Convincing Customers to Spend their way out of Recession

Join CRN editor Sara Yirrell and a panel comprised of Tim Black from sponsor Intel, Sam Routledge from VAR Softcat and Antony Young from analyst Demuto to find out how to get customers spending in 2010

More CRN TV

events

Expo 2008 entrance

Channel Expo 2010

The only UK exhibition dedicated to the channel is coming to London, Olympia on 12 and 13 May 2010

More Events

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Primary Navigation