Spy school surfaces corporate espionage tactics, defences

  • David Braue (CSO Online (Australia))
  • — 03 August, 2012 16:11

Ever-present news about malware and security attacks may have focused executives' minds on information security risks, but healthy interest in a new series of seminars dubbed Corporate Spy School serves as a reminder that information security is about a lot more than just protecting your emails.

"All it takes is a [surveillance] pen on the boardroom table and someone in the next room can potentially hear what's being said," Navid Sobbi, CEO of security risk-management firm Specialist Corporate Intelligence Agency (SCIA), told CSO Australia in the wake of the Security 2012 Exhibition, where SCIA debuted Corporate Spy School as a way of focusing executives' attention on the broader threat profile facing them.

SCIA's presence at Security 2012 drew a stream of enquiries and enrolments for CSS, which will begin before year's end as a regular series of seminars on specific topics related to physical and information-related security practice.

Already being floated are workshops in border security, industrial espionage, IT security, and other relevant areas that have emerged from SCIA's work using specialised equipment for tasks such as 'sweeping' company premises for listening or surveillance devices. Other relevant topics, such as CCTV and access control, will be covered with an eye to highlighting both current threats and defences.

"The corporate world is very relaxed, and all they're concerned about is viruses and malware," Sobbi explained. "We want to teach executives what can happen in a conference room when you're having a high-level meeting. Australians think this sort of thing never happens to them – but we're seeing it day in and day out. So we're doing Corporate Spy School as an education process."

The program may be light on spy-grade judo, weapons training and other 007 secrets, but it will complement the hands-on physical sessions with regular streams of educational podcasts, videos and discussion papers.

Their overall goal is to educate executives about the warning signs of corporate espionage, which can often be ignored until it's too late. More than half of respondents to the latest PricewaterhouseCoopers Global Economic Crime Survey said the most serious frauds they had encountered were inside jobs.

Comments are now closed.
CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Splunk for Security

Use Splunk to search, alert and report in real time on any user, network, system or application activity, configuration changes, and other IT data from one place.

more »

Submit your own security event

Submit your training courses

Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).


  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.

Read More
more »