Most recent

How to Prevent Data Leakage with Secure Email

By Eitan Bremler

Imagine receiving an urgent phone call from one of your bank employees or contractors, apologizing for the fact that they just accidentally sent an email with a customer’s confidential account information to a random email address. Even worse, what if the phone call came from the random person who received and opened the email? Either way, both scenarios have very bad implications and pose a massive breach of privacy.

According to Reuters, this actually happened on June 23, 2014. A contractor at Goldman Sachs sent an email containing confidential client data to a stranger’s Gmail account by mistake. This isn’t an isolated incident either. Similar situations occur with other banks, too, including Rocky Mountain Bank in Wyoming.

What if you could prevent such grave mistakes from occurring in the future while maintaining your employees and contractors email sending routines and methods?

Software Defined Access

Secure email has become a necessity for businesses that want to stay in business. With Safe-T’s secure email solution it is possible and easy to ensure emails do not end up in the hands of those they are not intended for. Safe-T's Secure Email solution allows bank employees and contractors to send encrypted emails securely to customers and business partners. Emails can be sent to anyone without disrupting the normal routine and not by requiring the recipient to install software or exchange keys.

Safe-T’s secure email offers a wide range of security, integration and audit tools, which work together and allow the bank’s IT administrator, CIO and CISO to deploy layers of protection against potential incidents of emails being sent to wrong recipients.

For example:

  1. The 1st layer which can be used will automatically encrypt the entire content of the email, including the email’s body and attachment, thus preventing the wrong recipient from opening the email and reading the content. 
  2. The 2nd layer ensures the secured email is only sent to an email address available within the bank’s CRM, thus preventing sending the email to wrong email addresses. 
  3. And the 3rd layer stores the encrypted package within the bank’s network and sends the recipient a link to download the package, rather than the email itself, as it happened in the cases mentioned above. This allows for the opportunity to delete a stored package if the email was sent to a wrong recipient. It’s a more effective and efficient step than convincing a recipient or the email service provider to delete it from their end, as was the case with Goldman Sachs and Google. In addition, a one-time password or username and password is then needed in order to access the email within the server. In the 3rd layer of protection, two factor authentications are offered, which helps to further prevent un-allowed access to the content.

So how does the solution work?

It’s easy to understand and more importantly, it’s effective. Once the encrypted email and its attachments are sent they are stored in the Safe-T Box server of your bank.The recipient receives an email with a link which they click on to retrieve the contents of the stored email at your bank. Using either a one-time password or username and password, the recipient is authenticated and can then access the encrypted email and download attachments via the organization’s portal.

To summarize, using Safe-T’s layered security approach ensures that the bank has many fail-safe points to help ensure that emails that are accidentally sent to a wrong recipient—ad-doc or registered—can be blocked or intercepted.  

All posts