EventTracker 7.1 alerts users to security breaches
Prism Microsystems released EventTracker 7.1 with enhanced features including USB and writeable media monitoring.
The proliferation of writeable media devices such as USB thumb drives and CD/DVD-W has created security challenges in private networks.
Much of the more serious theft of organizations’ data today is from internal sources. It takes only a few seconds to utilize these devices to copy confidential data from a desktop. A key feature of EventTracker 7.1 is its ability to monitor removable media allowing organizations to detect and in many cases, prevent confidential data loss and limit purposeful attacks from insiders.
“While USB drives and writeable media provide great efficiency, the potential for misuse is high. Very large volumes of data can be copied in seconds. EventTracker has been developed and is continuously upgraded and refined to meet the ever-expanding threatscape that enterprises and government agencies face today,” said A.N. Ananth, CEO at Prism Microsystems.
On servers or workstations the EventTracker Windows Agent is notified anytime a USB device or writeable media is inserted or removed. The EventTracker Agent monitors all file change activities for these devices, including any adds, modifications, deletions or copies that are made.
This information as well as the time and date, the drive letter, and the user name are provided to the enterprise, in real time. Based on predefined policy, EventTracker can generate an incident alert to notify IT personnel, launch automatic remediation actions, or block unauthorized USB devices.
Additional enhancements to EventTracker v7.1 include a new XML API, and support for Smart Cards (HSPD12).