SearchInform continues to expand the data protection capabilities of its next-generation DLP solution, Risk Monitor, for Linux environments. The latest update introduces advanced blocking controls for messengers, video conferencing services, removable media, and remote access software. These enhancements enable customers to configure proactive data loss prevention across critical leakage channels.

For example, Risk Monitor now blocks the transmission of messages and files based on content analysis in the web versions of Microsoft Teams, Zoom, and Telegram when employees use these services on Linux workstations.

Users can also prohibit the transfer of sensitive data to any websites. The Websites by Content rule is triggered if an employee attempts to upload a document containing protected information via a browser, or even enters a prohibited phrase into a search engine. This significantly improves the accuracy and depth of web activity monitoring.

Remote access control has been substantially strengthened for Linux infrastructures. The system now provides full auditing and blocking of RDP sessions via xrdp. The functionality is used to monitor text and file transfers through the clipboard and prevent unauthorized connections of network drives.

Also, removable devices can now be flexibly managed. For instance, the system can prevent writing files containing confidential data to USB flash drives if an employee does not have the appropriate access rights. It can also restrict or allow the use of removable media for selected users through configurable blacklists and whitelists.

“Every new release brings a significant expansion of protection capabilities for Linux infrastructures,” comments Sergio Bertoni, Lead Analyst at SearchInform.

“The current update delivers even more control tools. Information security teams can define policies for the use of remote access solutions that, in today’s hybrid infrastructures and remote work models, should be treated as a full-fledged data leakage channel. At the same time, organizations can finely tune how users handle sensitive data across traditional channels: websites, messengers, and removable devices. We continuously expand the list of supported services based on customer demand,” added Sergio Bertoni.

SearchInform Risk Monitor protects workstations running different Linux OS such as CentOS, Ubuntu, Pardus, with Debian support added in 2025. The DLP agent automatically adapts to the operating system kernel version, simplifying deployment and ongoing maintenance of the data protection perimeter.

ABOUT SEARCHINFORM

SearchInform is an information security and risk management product vendor as well as an MSS provider. The company's clients are more than 4000 companies in 20+ countries. Today, the team has products and services for comprehensive protection against insider threats at all levels of corporate information systems: FileAuditor (the DCAP class solution); DLP system with extended functionality; Risk Monitor (advanced platform for internal threat mitigation); SIEM system, Information Security outsourcing service.