Stay-at-Home Data Breach Warning

John E. Kaye
- Published
- News, Technology

According to the International Association of IT Asset Managers (IAITAM), now that major parts of the world are under stay-at-home orders, unprepared corporations face a huge data control problem as they go into their first major billing cycle carried out by employees working at home.
Thousands of companies in the U.S are relying on employees untrained in doing their jobs from home and using untracked equipment on insecure Wi-Fi connections. Not only are these companies putting their own data at risk, but they are also exposing sensitive data about their clients. Less than two weeks ago, IAITAM issued a warning to organizations and government agencies, urging them to consider “nightmare data risks” before moving to work-from-home arrangements.
Dr. Barbara Rembiesa, president and CEO of IAITAM, said: “Many companies were caught unprepared when cities and states issued mandatory stay-at-home rules. Now, the rubber is going to meet the road when those companies, which are struggling not to be crippled by COVID-19, try to keep the cash flowing by having employees at home call or email for credit card information, print out invoices on untracked home computers and send them out on personal Wi-Fi networks. This opens up the potential for breaches and fraud on a scale never before seen.”
IAITAM is concerned that many employees will be ill-equipped on home computers and other BYOD (bring your own device) equipment to handle sensitive data such as credit card numbers, foreshadowing imminent breaches of personally identifiable information (PII). Ensuring that policies and procedures are in place and enforced (including on a remote basis) is imperative to protecting data and the integrity of an organization.
Billing information always contains PPI, which is subject to data privacy regulations. It is important to ensure that assets used at home are abiding by internal policies and external regulations that govern billing information. For instance, Payment Card Industry (PCI) Data Security Standard compliance dictates that companies cannot track credit card numbers or duplicate them without appropriate masking. Under these terms, printing an invoice or taking a credit card payment over the phone, and writing it down without redacting full account numbers, could be considered a data breach.
Industry regulations for sectors such as education, finance or healthcare have separate considerations. Additionally, all businesses that handle data from European citizens are subject to GDPR enforcementand hefty non-compliance fines. It is advisable to consult with an experienced IT Asset Management professional, who can appropriately determine which data regulatory guidelines are at work and how to apply them properly.
Rembiesa added: “It is no longer business as usual. ‘Stay-at-home’ orders ensure that secure payments and billing procedures are nearly impossible. Remote employees are not trained on data privacy regulation and risk exposing sensitive information to a data breach. Without proper IT Asset Management, there are major dangers that must be mitigated. It is not too late for CEOs and others in charge of companies to take steps to get these risks under control and to protect their data and that of their customers.”
For more information visit: www.iaitam.org.
For more Technology News follow The European Magazine.
Sign up to The European Newsletter
RECENT ARTICLES
-
Trump family’s crypto debut adds $5bn to fortune amid ethics row
-
Warren Buffett turns 95 – the secrets behind a $130 billion fortune
-
Most game developers now using AI in their workflows, Google Cloud study finds
-
BlackRock takes $89m stake in Freedom Holding, emerging as second-largest shareholder
-
Welcome to Britain’s most exclusive founders’ network with £1M entry bar
-
Portugal’s GR22 crowned Europe’s most rewarding hiking trail
-
Music faces a bum note without elephant dung, new research warns
-
Fermi America secures $350m in financing led by Macquarie Group
-
Cambodia to rename key highway after Donald Trump for brokering peace deal
-
Want your business to succeed? Start with your own wellbeing, say SME leaders
-
The five superyacht shows that matter most
-
Short circuit: humanoids go for gold at first 'Olympics for robots'
-
Return to sender? Royal Mail’s red boxes go high-tech
-
New IBM–NASA AI aims to forecast solar flares before they knock out satellites or endanger astronauts
-
Uber plots Channel Tunnel disruption with app-bookable high-speed trains
-
Global tech leaders back Nigeria’s $1 trillion digital ambition at GITEX Nigeria 2025
-
Scientists are racing to protect sea coral with robots and AI as heatwaves devastate reefs
-
Game, set...wax. Billie Jean King statue unveiled in New York
-
Vegas on a losing streak as visitors drop 11%
-
The European launches new Digital Content Exchange Network
-
Munich unveils new hydrogen lab as Europe steps up green energy race
-
Dubai Humanitarian launches film highlighting $48m global aid effort
-
Inside MINISO’s new giant Amsterdam store aimed at Europe’s Gen Z shoppers
-
Global demand drives record enrolment at Mohamed bin Zayed AI University
-
Tech boss’ dream private island on sale for £3m complete with fortress, helipad and...nightclub