File Transfer Protocol

Introduced in 1971, File Transfer Protocol (FTP) is a standard communication protocol used for the transfer of data between hosts (https://en.wikipedia.org/wiki/File_Transfer_Protocol).

Key industries ustilise FTP such as medical, legal services, manufacturing, wholesale distribution, financial and Architecture, Engineering, and Construction (AEC).

In 2016 there were ~ 1550 public facing FTP hosts (https://www.ftpstatus.com/).

Major vendors use FTP as part of their service capability (https://dataplatform.cloud.ibm.com/docs/content/wsj/manage-data/conn-ftp.html).

Using Cybersecurity controls to block access to online resources based upon Categorisation, Deny Lists, Firewall rules etc is not effective as Data Loss Prevention technologies.
For users who have the capability to utilise FTP, the use of this protocol demonstrates they can easily move sensitive/confidential data outside of organisations.

Supporting legacy technologies increases the scope by which data can be transferred out of organisations, and the associated likelihood of a Data Loss risk event occurring must be considered.
The impact of a Data Loss risk event will depend on the content and amount of information that has been uploaded via FTP.

Use DLP-TEST to assess: - 

- Coverage of DLP Technologies to detect data being uploaded via FTP.
- Capability of DLP Technologies to accurately detect sensitive/confidential data being uploaded via FTP.
- Ability of DLP technologies to ignore data being uploaded that is NOT sensitive or confidential.