Varnum Data Privacy and Litigation attorney John Rolecki provided insight into a recent MiBiz article covering the growing threat of data exfiltration by employees. Rolecki discussed the growing prevalence of such breaches and what businesses can do to avoid them.
“There has been a definite trend upwards (in illegal data exfiltration) throughout the course of 2021 and 2022. The year is still young and we have already seen a lot of both intentional and not intentional,” said Varnum LLP Partner John Rolecki, who specializes in data privacy and litigation.
Many instances of illegal data exfiltration go unnoticed, which makes routine checks of a company-wide network vital. These can be regularly scheduled check-ins, but it’s also important when any individual with close ties to sensitive information leaves a company.
“It’s always a good idea — when you have someone at a certain level of involvement with the network leave — to make sure there is no irregularity,” Rolecki said. “That kind of routine scan can ultimately lead to uncovering illegal exfiltration when you might not have known until it was too late or it becomes more complex.”
And when company officials are able to identify forms of exfiltration, and the person behind it, Rolecki said they should provide a written notice to that person to inform them that what they are doing can come with civil and potentially criminal ramifications.
“Demand clarity, demand more information and demand the return (of the data),” Rolecki said.
Read the full article here: INSIDE THREAT: Experts warn of growing data exfiltration from company employees