About a-team Marketing Services
The leading knowledge platform for the financial technology industry
The leading knowledge platform for the financial technology industry

A-Team Insight Blogs

Corporate Boards Vulnerable to Hacking and Information Theft, Says Thomson Reuters Survey

Subscribe to our newsletter

Most major corporations surveyed have significant security gaps that leave sensitive board-level information open to information theft and hacking. Those are among the findings of a new survey of board members of UK and global corporations conducted by Thomson Reuters Governance, Risk & Compliance.

The findings are particularly noteworthy in light of recent news stories about the handling of board communications involving executive succession decisions at companies including Yahoo and Apple.

The survey found that information provided to members of corporate boards of directors is often in unencrypted email accounts and computers, or otherwise provided in forms that are easily lost, misplaced or stolen. The Thomson Reuters Governance, Risk & Compliance survey polled general counsel and board members at leading global corporations across a wide variety of industries.

Most corporations surveyed have one or more of the following potential security issues involving information provided to board members:

85% Unencrypted board communications

79% Board documents stored on personal computers at home or work

75% Board documents stored on personal mobile devices (e.g., iPad, laptop, smartphone, etc.)

73% Documents sent to board members via personal, non-commercial email addresses

71% Board documents accessible via wi-fi or unsecured networks

10% Have reported computer, mobile devices, or sensitive company documents lost, stolen or left in public places

Another vulnerability is in the area of legal discovery, as most corporations are not accounting for all of the computing devices that board members are using to access and store board documents. The discovery process would then require a canvassing of computers, files and other data storage maintained by board members at their homes or businesses.

“Communications and information handling with board members represents a weak link in the chain of corporate information security,” said David Craig, president, Thomson Reuters Governance, Risk & Compliance. “Boards of directors handle some of their companies’ most critical and sensitive information, including business strategies, discussion of executive hiring and compensation, legal issues, internal investigations and more.

“While most corporations take extraordinary measures to protect information shared with executives and employees, board members – often being outside directors – operate largely outside of a corporation’s secure computer networks and many of their strict internal security policies. The survey found that information given to the board is treated with inadequate levels of care and security with alarming frequency, placing information at risk of loss, theft and exposure.

“In addition, because of the increasingly global nature of boards,” continued Craig, “members often have to travel considerable distances to attend board meetings and functions, providing numerous opportunities for papers, briefcases, laptops and mobile devices to be physically lost, stolen or exposed to hazards such as hackers and unsecured networks.”

Subscribe to our newsletter

Related content

WEBINAR

Recorded Webinar: Deploying knowledge graphs in the real data management world

Knowledge graphs that link data across a wide and diverse range of sources, incorporate both structured and unstructured data, visualise connected data, and provide in-depth contextual search capabilities that deliver business insight without moving data offer great potential for financial institutions. Their use cases range from advanced data integration, unification and analytics to specific functionality...

BLOG

GLEIF CEO Stephan Wolf Discusses Progress of the LEI and Plans to Increase its Growth

The Legal Entity Identifier (LEI) crossed the 2 million mark of identifiers issued, experienced organic growth of 15% despite no major regulatory implementations, and held a steady 65% renewal rate through 2021. Moving into 2022, projects set up by the Global LEI Foundation (GLEIF) to expand LEI issuance are expected to take off, and the...

EVENT

Virtual Briefing: ESG Data Management – A Strategic Imperative (Redirected)

This briefing will explore challenges around assembling and evaluating ESG data for reporting and the impact of regulatory measures and industry collaboration on transparency and standardisation efforts. Expert speakers will address how the evolving market infrastructure is developing and the role of new technologies and alternative data in improving insight and filling data gaps.

GUIDE

Regulatory Data Handbook 2021/2022 – Ninth Edition

Welcome to the ninth edition of A-Team Group’s Regulatory Data Handbook, a publication dedicated to helping you gain a full understanding of regulations related to your organisation from the details of requirements to best practice implementation. This edition of the handbook includes a focus on regulations being rolled out to bring order and standardisation to...