Data exfiltration, sometimes referred to as data theft, is the unauthorized transfer of data from your computer, network, or other devices. The stolen data is transferred from the victim to a control server or some other device that is controlled by the attacker. This data is often sold on the dark web and used by other criminals for spear phishing, identity theft, and other advanced threats.
A comprehensive data loss prevention (DLP) system will scan all outbound emails and other network traffic to look for pre-determined patterns or keywords, such as credit card numbers or HIPAA medical terms. Emails containing this type of information are either blocked, encrypted, or quarantined for a review.
Data exfiltration is one of the threats identified in our free e-book, 13 Email Threats to Know About Right Now, and is sometimes part of a larger attack.
Download your free copy of the e-book, 13 Email Threats to Know About Right Now, to learn how to defend against data exfiltration and other dangerous email threats.
Christine Barry is Senior Chief Blogger and Social Media Manager at Barracuda. Prior to joining Barracuda, Christine was a field engineer and project manager for K12 and SMB clients for over 15 years. She holds several technology and project management credentials, a Bachelor of Arts, and a Master of Business Administration. She is a graduate of the University of Michigan.
Connect with Christine on LinkedIn here.