Metromont Increases User Awareness of USB Security Risks
CurrentWare lets us see which employees are trying to use unauthorized USB devices so we can take corrective action.
Thankfully, the software’s warnings when blocking a USB device have made our stance on random storage devices perfectly clear.
Scottie Wagner
IT Manager, Metromont
About the Company
With a rich history dating back to 1925, Metromont is a leading precast concrete manufacturer with six locations in four states.
Their expertise lies in manufacturing precast concrete materials for data centers, warehouses, multi-family residential structures, parking decks, and other commercial and industrial structures.
| Headquarters Greenville, SC, USA | Industry Manufacturing |
| Business Type B2B | Company Size 1,500+ Employees |
Targeted USB Drop Attacks Highlight the Dire Need for a USB Security Solution
A USB security solution is essential for meeting a critical security control required by various cybersecurity insurance providers and cybersecurity compliance frameworks—Preventing users from inserting unauthorized removable media devices into company computers.
The importance of USB security came to the forefront for Metromont when they had an external security company perform a highly targeted USB drop attack on their employees.
In the attack, security researchers posing as potential threats used information gleaned from social media to target employees with seemingly harmless thumb drives.
Alarmingly, some of the employees plugged these drives into their work computers—A situation that otherwise could unknowingly grant threat actors access to sensitive information!
During a social engineering test, a security company came in and found information on our people through social media.
They shipped targeted thumb drives to them, and to our shock some people actually plugged them into our systems.
After that, we knew we needed a USB security solution like CurrentWare to help protect us.
Scottie Wagner
IT Manager, Metromont
The Risks of USB Storage Devices
Data Theft
With unrestricted access to USB ports, a soon-to-be-ex-employee can easily transfer sensitive data to a USB stick on the way out
Data Leakage
The small size of USB drives makes them easy to transport—but also easy to lose or steal, making data leakage all too possible
USB Malware
USB devices can easily be a vector for malware that leaks sensitive data, executes ransomware, and other security risks
Stellar Support Makes All the Difference
While a written removable media policy is important for communicating security responsibilities to staff, it must be combined with technical security measures to be effective.
Unfortunately, Metromont’s first USB security software vendor—ManageEngine Device Control Plus—failed to provide the support necessary to ensure their success with the platform.
Recognizing their need for a reliable security vendor, Metromont turned to CurrentWare’s data loss prevention solution, AccessPatrol, and the stellar support team that came with it.
With the mission at hand, CurrentWare’s support team worked directly with the Metromont team to set up a proof-of-concept trial in their organization. Once deployed, blocking unauthorized portable storage devices was as easy as a few clicks.
Our cybersecurity insurance advised us on the importance of mitigating USB security risks, so we knew we needed to put a solution in place.
When our previous security software vendor wasn’t giving us the support we needed, we turned to CurrentWare; once we were ready to deploy, they were right there with us!
From there, Scottie and his team reiterated the importance of following their removable media policy by requiring all staff who need portable storage device access to submit requests to the IT department so they could be appropriately controlled as part of their cybersecurity insurance requirements.
Transitioning from ManageEngine to CurrentWare was a breeze. The CurrentWare support team set everything up perfectly, and the software is so user-friendly that I’m sure future IT employees will easily navigate it.
Our previous USB security software vendor, ManageEngine, promised the world, then left us hanging when we needed support for their ‘premium’ features.
CurrentWare delivered everything we needed from the start, with exceptional customer service.
Scottie Wagner
IT Manager, Metromont
Ensuring Ongoing Cybersecurity Awareness
The ever-changing landscape of cyber threats demands constant vigilance. Employees are on the front lines of this battle, and ongoing security awareness training is critical.
By ensuring employees are aware of their security risks and responsibilities they’ll be better equipped to avoid falling victim to the latest phishing scams, malware, and other dangers.
To help emphasize removable media policies, AccessPatrol can optionally present a notification or dialogue box when USB devices are inserted into a managed computer.
The notification requires employees to acknowledge they will use authorized removable media devices according to the organization’s policies, providing a consistent reminder of their responsibilities.
Now that CurrentWare is in place, our employees have stopped trying to use random USB devices.
Instead, they submit requests to use approved USB devices as needed. With this new system, we can easily keep an eye on things.
Scottie Wagner
IT Manager, Metromont
FREE DOWNLOAD
Removable Media Policy Template
Download this data security policy template to prevent data leakage to USB flash drives and other removable storage devices.
- Set data security standards for portable storage
- Define the acceptable use of removable media
- Inform your users about their security responsibilities
Preventing Data Theft Works Both Ways
When discussing preventing employee data theft, the importance of preventing company data from leaving secure systems is often emphasized. However, data theft prevention is also the responsibility of the parties that would benefit from stolen data, such as in the case of corporate espionage.
It’s not uncommon for new hires to attempt to bring data from previous jobs, sometimes unintentionally.
By restricting and monitoring data transfers, Metromont prevents unwanted sensitive information from entering its secure systems. This protects them from legal issues arising from a breach of that data or the development of new business capabilities based on it.
Not restricting USB devices would risk having unwanted data transferred to our systems, such as new employees wanting to bring data from their previous jobs.
Since we have CurrentWare in place, we can limit liability by catching these risks early on.
Scottie Wagner
IT Manager, Metromont
Get Started Today
With a Free Trial
Fully functional. Easy to use. Starting at $5 user/month
More CurrentWare Case Studies
From Wild West to Whitelisted: Taming Web Browsing for MSPs
Activity Insights in Citrix Workspace Drives Software Adoption and Productivity
Metromont Mitigates USB Security Risks & Increases User Security Awareness
From Hunch to Hard Evidence: How CurrentWare Informs HR Investigations
Viking Yachts Protects Intellectual Property From a Departing Employee
Boston Centerless Scales Production With the CurrentWare Suite
How CurrentWare Helps Legal Services Manage Insider Threats & Staff Productivity
Shady Maple Takes Back Control Over Employee Technology Use
How CurrentWare Helps Governments Meet Compliance & Streamline Operations
Vehicle Dealership Meets FTC Compliance With Critical Safeguards
Local College Keeps Its Students and Systems Safe From Internet-Based Threats
First Choice Health Protects Patient Data & Meets HIPAA Compliance
How CurrentWare Helps Financial Services Protect Data & Meet Productivity Goals
CurrentWare Safeguards the Integrity of State and Local Elections
Employee Monitoring Makes Remote Work Possible for S&K Law Firm
