- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
By 
Adrianne Appel2023-10-11T20:21:00
Businesses unnecessarily storing massive amounts of useless data create a “data hoarding” situation hackers love to exploit, according to a cybersecurity expert.
On average, two-thirds of the data stored by businesses is not needed and should be destroyed, said Tim Ayling, vice president of cybersecurity for Europe, Middle East, and Africa at information technology security company Imperva. Holding on to data creates vulnerabilities for businesses by giving cyberattackers more avenues to access an organization’s computer systems.
The more data a business has, the broader its attack surface is, meaning there are more possible vulnerabilities available for a hacker to exploit. If hackers can get access anywhere on a system, it might allow them to gain entry to other areas and extract other data they want.
THIS IS MEMBERS-ONLY CONTENT. To continue reading, choose one of the options below.
News and analysis for the well-informed compliance or audit exec.
Register for free
Access one free, non-premium article each month.
Complimentary CPE webcasts, resources, and e-Books.
Annual Membership best value
Subscribe now for $365
Our lowest price ($1 per day) for one year.
The United States and United Arab Emirates finalized an agreement to work together to safeguard the financial sector from cyberattacks.
The furor over NatWest Group’s decision to monitor and close the account of right-wing Brexit campaigner Nigel Farage—and then disclose the details to a journalist—has raised questions regarding whether other banks employ the same means to get rid of undesirable customers.
Draft risk assessment regulations under the California Consumer Privacy Act are designed to prohibit businesses from handling consumer data if uncontrolled risks—to the security and privacy of the consumer, the public, or the business—outweigh the benefits.
The Department of Justice’s renewed scrutiny toward a corporation’s approach to the use of personal devices strengthens the case for companies to get away from bring your own device, a panelist at Compliance Week’s 2024 National Conference argued.
Compliance failures in the supply chain are hampering organizations’ efforts to implement environmental, social, and governance initiatives and meet disclosure requirements, according to a new report by U.K. law firm Burges Salmon.
Examiners with the Securities and Exchange Commission found investment advisory firms have generally done well creating processes to comply with the agency’s amended marketing rule but some have fallen short in ensuring compliance.
