- Topics
- Regions
- Events
- Webcasts
- Resources
- CW Exclusives
- Membership
“For tracking litigation, enforcement, and regulatory developments, Compliance Week
should be your prime source.”- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
Expert: How data hoarding increases businesses’ cyber risks
By 
Adrianne Appel2023-10-11T20:21:00
Businesses unnecessarily storing massive amounts of useless data create a “data hoarding” situation hackers love to exploit, according to a cybersecurity expert.
On average, two-thirds of the data stored by businesses is not needed and should be destroyed, said Tim Ayling, vice president of cybersecurity for Europe, Middle East, and Africa at information technology security company Imperva. Holding on to data creates vulnerabilities for businesses by giving cyberattackers more avenues to access an organization’s computer systems.
The more data a business has, the broader its attack surface is, meaning there are more possible vulnerabilities available for a hacker to exploit. If hackers can get access anywhere on a system, it might allow them to gain entry to other areas and extract other data they want.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefUAE joins pact with U.S. on cybersecurity cooperation
The United States and United Arab Emirates finalized an agreement to work together to safeguard the financial sector from cyberattacks.
-
PremiumBank privacy processes questioned after U.K. ‘debanking’ scandal
The furor over NatWest Group’s decision to monitor and close the account of right-wing Brexit campaigner Nigel Farage—and then disclose the details to a journalist—has raised questions regarding whether other banks employ the same means to get rid of undesirable customers.
-
PremiumCPPA eyeing broad scope in early discussions around data risk assessments
Draft risk assessment regulations under the California Consumer Privacy Act are designed to prohibit businesses from handling consumer data if uncontrolled risks—to the security and privacy of the consumer, the public, or the business—outweigh the benefits.
More from Risk Management
-
News BriefPortuguese bank ousts chief risk officer after ‘suspicious’ transactions uncovered
Portuguese bank Novo Banco, S.A., fired Chief Risk Officer Carlos Jorge Ferreira Brandão “with just cause” after an internal probe discovered “suspicious financial transactions” in his sphere.
-
News BriefTop 5 risks for 2025: U.S. uncertainty, global trade war, digital attacks
A prominent risk management firm has issued its predictions for the top five risks for business in 2025, along with guidance for how organizations should prepare and respond.
-
PremiumWorries DOJ is ‘dumping’ AI responsibilities on compliance departments in ECCP update
When the DOJ released its revised Evaluation of Corporate Compliance Programs, it turned some heads. Tucked into a section on risk assessments was a strongly worded series of questions that appeared to shoulder compliance teams with the responsibility for ensuring the safe use of AI tools by their firms.