Menu
Sage data breach highlights the risk of the insider threat

Sage data breach highlights the risk of the insider threat

The 32-year-old woman has been arrested for alleged fraud against the company

A suspect in a recent data breach at Sage, a U.K. provider of business software, has been arrested. On Wednesday, police in London detained a company employee.

The 32-year-old woman was held for alleged fraud against the company, London City Police said. She has since been released on bail.

It’s still unclear what information, if any, may have been leaked. However, Sage, a supplier of accounting and payroll software, began notifying customers about the breach last week.

Between 200 and 300 business clients in the U.K. may have been affected. At the time, Sage said the breach had come from unauthorized access to internal login data.

Security firm the Antisocial Engineer has been in contact with Sage and said a company insider was the prime suspect.

Because Sage’s software handles payroll data, the company has information on their client’s employees, including addresses, insurance numbers, bank account details, the Antisocial Engineer said.

Sage didn’t immediately respond to comment about the arrest. But security experts say the breach underscores the danger of data theft from company insiders.

To protect their systems, companies need to reconsider offering employees unrestricted access to valuable data.

For instance, the access should be tied to individual accounts, said Chris Webber, security strategist at Centrify, an ID management software provider.

“This way you can revoke access simply and quickly, by user, when something goes awry,” he said in an email.

Companies can also consider monitoring their employees’ activities, when accessing sensitive resources, said Mimecast, a provider of business email and data security.

About 45 percent of companies say they are ill-equipped to handle malicious threats from insiders, it found in a recent study.

To ward off the danger, companies can install internal safeguards that can prevent employees from sending sensitive data to anyone outside the network, Mimecast said.

Subscribe here for up-to-date channel news

Follow Us

Join the New Zealand Reseller News newsletter!

Error: Please check your email address.

Featured

Slideshows

StorageCraft celebrates high achievers at its inaugural A/NZ Partner Awards

StorageCraft celebrates high achievers at its inaugural A/NZ Partner Awards

Revealed at a glitzy bash in Sydney at the Ivy Penthouse, the first StorageCraft Partner Awards locally saw the vendor honour its top-performing partners with ASI Solutions, SMBiT Pro, Webroot, ACA Pacific and Soft Solutions New Zealand taking home the top awards. Photos by Maria Stefina.

StorageCraft celebrates high achievers at its inaugural A/NZ Partner Awards
Kiwi resellers make a splash on Synnex and Lenovo RotoVegas road trip

Kiwi resellers make a splash on Synnex and Lenovo RotoVegas road trip

​Synnex and Lenovo hosted 18 resellers for an action-packed weekend adventure in RotoVegas, taking in white water rafting on the Kaituna River, as well as quad biking and dinner at Stratosfare​, overlooking Lake Rotorua at the top of Mount Ngongotaha​. Photos by Synnex.

Kiwi resellers make a splash on Synnex and Lenovo RotoVegas road trip
Show Comments