Data exfiltration, sometimes referred to as data theft, is the unauthorized transfer of data from your computer, network, or other devices. The stolen data is transferred from the victim to a control server or some other device that is controlled by the attacker. This data is often sold on the dark web and used by other criminals for spear phishing, identity theft, and other advanced threats.
A comprehensive data loss prevention (DLP) system will scan all outbound emails and other network traffic to look for pre-determined patterns or keywords, such as credit card numbers or HIPAA medical terms. Emails containing this type of information are either blocked, encrypted, or quarantined for a review.
Data exfiltration is one of the threats identified in our free e-book, 13 Email Threats to Know About Right Now, and is sometimes part of a larger attack.
Download your free copy of the e-book, 13 Email Threats to Know About Right Now, to learn how to defend against data exfiltration and other dangerous email threats.
Photo: JARIRIYAWAT / Shutterstock