SearchInform Updates Risk Monitor to Prevent Flash Drive Leaks on Linux
26.02.2025

SearchInform’s next-gen DLP system, Risk Monitor, has received updates of features for Linux PCs.

From now on, DeviceController module for monitoring of external devices can automatically block transmission of documents containing sensitive information, for example, personal data and commercial secrets to flash drives connected to computers on Linux.

To prevent data leakage via external devices, the state-of-the-art DLP system analyzes the content of each file. If it detects the data transfer of which is prohibited, it will not allow the documents to be transmitted to the removable drive. The blocking rules support all types of content search: by words and phrases, regular expressions, similar content search, search by attributes and others.

Content blocking can be applied to specific employees, groups, or PCs. This feature ensures that restrictions will not affect business processes. With the SearchInform Risk Monitor, it is also possible to completely block access to flash drives.

"Often, companies strictly regulate the use of external data carriers, for example, flash drives can be used only by certain staff members. But even they might steal critical information by transferring it to a flash drive," said Sergio Bertoni, the Leading Analyst at SearchInform.

"That's why content blocking for protection of different data types are needed. Flexible settings in Risk Monitor help customize restrictions to empower or restrain employees, who work with external devices, according to their responsibilities", added Bertoni.

Previously, restrictions on access to CD and DVD drives, modems and network adapters, files with FileAuditor classification labels, as well as blocking of websites were implemented in Risk Monitor on Linux.


ABOUT SEARCHINFORM

SearchInform is an information security and risk management product vendor as well as an MSS provider. The company's clients are more than 4000 companies in 20+ countries. Today, the team has products and services for comprehensive protection against insider threats at all levels of corporate information systems: FileAuditor (the DCAP class solution); DLP system with extended functionality; Risk Monitor (advanced platform for internal threat mitigation); SIEM system, IS outsourcing service.


Letter Subscribe to get helpful articles and white papers. We discuss industry trends and give advice on how to deal with data leaks and cyber incidents.