Trend Micro data revealed due to virus
Company documents wound up on a P2P network
IDG News Service - The failure of a Trend Micro Inc. employee to install his company's own antivirus software led to the uploading of some company reports to a popular Japanese peer-to-peer file-sharing network, the company said today.
About a year ago, an employee, who is no longer with Trend Micro, copied data including reports to his boss and proposals regarding the company's products to his home computer, said Kazuhisa Tagaya, a spokesman for the Tokyo-based company. However, the computer was infected through the Winny file-sharing application with a virus that caused the files to be released over the P2P network.
"We didn't say anything at the time because one file has a customer's company name," said Tagaya. "If we did say this, then people would have searched for the file, and it would have caused trouble for the customer. Now, such accidents happen every day, and the version of the file being distributed on Winny has been rewritten incorrectly by someone, so [it] is wrong."
He said the file wasn't altered by Trend Micro or its employees.
In disclosing the data leak, Trend Micro became the latest of a number of corporations or government agencies to report data losses as a result of viruses on the Winny network. Winny can be downloaded at no charge and is a popular way for Japanese Internet users to exchange music and video files.
Documents, including police investigation materials, training manuals for Japan's Self-Defense Force, data related to nuclear power plants and information including the names of sex-crime victims, have all found their way into the public domain via Winny, according to local news reports.
The string of leaks led a senior Japanese government official, Chief Cabinet Secretary Shinzo Abe, to call on people not to use Winny.
"We cannot prevent information leaks unless everyone takes antivirus measures," Abe said at a news conference on March 15. "The surest way is not to use Winny."
For Trend Micro, the loss of data due to a virus is likely an embarrassment for the company.
"Trend Micro gives its antivirus software to all employees for installation on their home computers," said Tagaya. In this case, it appears the employee did not bother to install the software on his home computer.
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- Advanced Threat Defense: A Comprehensive Approach In this interview, Peter George, president, General Dynamics Fidelis Cybersecurity Solutions, explains why we need more than anti-malware, and what constitutes a comprehensive...
- Who's Spying on You? You're aware of the threats of malware to your business but what about the ever-changing ground rules? Cybercriminals today are launching attacks against...
- Big Data, Big Mess: Sound Risk Intelligence Through Complete Context This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- Will the Real Endpoint Threat Detection and Response Please Stand Up? This webinar explores new technologies & process for protecting endpoints from advanced attackers as well as the innovations that are pushing the envelope... All Malware and Vulnerabilities White Papers | Webcasts