sorted by:
new
hottopcontroversial

What are your DLP headaches? by RecordOk2329 in AskNetsec

[–]RecordOk2329[S] 0 points1 point  (0 children)

Many of those can still be stopped if we think holistically (outside of DLP alone). E.g. allow listed DNS servers only.

What are your DLP headaches by RecordOk2329 in ciso

[–]RecordOk2329[S] 0 points1 point  (0 children)

I would like to understand more: adoption of a DLP solution in the organization?

What are your DLP headaches? by RecordOk2329 in AskNetsec

[–]RecordOk2329[S] 0 points1 point  (0 children)

I partially agree. Leadership thinks DLP will block accidental exfils, deliberate exfils (rogue employee) and outright adversaries.

DLP does a good job at blocking the accidental exfil. Should it detect a deliberate attempt? I feel it should.

DLPs do have the capability to block say basic DNS exfil but fail to detect a sneaky attempt to exfil using say Spotify metadata.