With lurid examples of data breaches continuing to hit the headlines every few weeks, Symantec has highlighted the very real link between identity theft and the loss or theft of laptops and other portable devices containing potentially sensitive data.

This is more than the usual security vendor scaremongering – the criminal fraternity has twigged that nabbing a salesperson’s laptop can be a very efficient way of acquiring bulk identity data. As ever, the potential consequences of such a security breach range from simple fines to the annihilation of a firm’s reputation.

The simplest measures are usually the most effective and encryption on laptop hard disks and USB sticks, which then demand user authentication before they can be used, are basic measures that all firms should adopt if they want to lessen the impact of lost devices.

A perception still exists that encryption is something of a black art – costly, time-consuming and difficult to manage. Organisations need to get over this misconception and start managing the risks.