Tag: Insider Threat

Employees’ poor security habits are getting worse

Despite an increased focus on cybersecurity awareness in the workplace, employees’ poor cybersecurity habits are getting worse, compounded by the speed and complexity of the digital transformation. Of the 1,600 global employees Vanson Bourne surveyed, 75% of respondents admitted to reusing passwords across accounts, including work and personal.

Organizations are at varying stages of the digital transformation, and that evolution has presented an increasingly complex IT environment to manage securely. Yet the survey findings points to a workforce who are less committed to security best practices.

Read more about the findings of the new survey on Help Net Security.

Ex-Employees Allegedly Steal Micron Trade Secrets Valued At Over $400 Million

Like many other businesses, semiconductor manufacturer Micron Technology employs a range of physical, electronic, and policy measures to protect its trade secrets. Yet all it took for the company to allegedly lose intellectual property worth at least $400 million to a Chinese competitor was two employees with legitimate access to the data.

A federal indictment unsealed this week in the US District Court for the Northern District of California described Micron as the victim of economic espionage involving a Taiwanese semiconductor company, a state-owned company in China, and three individuals who previously worked for Micron.

Read more about how Micron fell victim to espionage on DarkReading.

How to protect your organization from insider threats

Is your security approach exposing your organization to risk? The answer is “yes” if your security strategy focuses exclusively on external threats. If the breaches of the last 24 months have taught us anything – it’s that insider threats are a cause for equal if not greater concern.

The problem with traditional implementations is a security-with-blinders focus on files, infrastructure, and data in order to secure systems. They limit access to unauthorized users, but do not take into account the risk involved with negligent or malicious users that have already been given access to the system. This is the real risk of insider threat.

Read more about how to tackle insider threats on Help Net Security.

How science can fight insider threats

Malicious insiders pose the biggest cybersecurity threat for companies today because they can cause the most damage, and are much harder to detect than outsiders. According to the 2018 Verizon Data Breach Investigations Report, 28 percent of all data breaches involved insiders and that insiders accounted for 76 percent of all compromised records.

Detecting insider threats using conventional security monitoring techniques is difficult, if not impossible. Data science, however, provides a promising alternative. The emerging field of security analytics uses machine learning technologies to establish baseline patterns of human behavior, and then applies algorithms and statistical analysis to detect meaningful anomalies from those patterns that may indicate illicit behavior.

Read more about how science can fight insider threats on Help Net Security.

How To Avoid An Insider Threat Nightmare

Often, the most terrifying of all threats to a company’s IT network, is that posed by the insider. According to a Ponemon report, over the past two years the insider threat has escalated for businesses, with the average number of incidents involving employee or contractor negligence having increased by 26 percent, and by 53 percent for malicious and criminal insiders.

CyberArk research sheds light on how IT security decision makers aren’t exempt from putting their organisations at risk. A startling 85% worried that they might personally introduce a cybersecurity incident into their company.

Read how businesses across all sectors, can take steps to avoid an insider threat nightmare, according to David Higgins of CyberArk, on Information Security Buzz.

ThreatList: Half of Execs Feel Unprepared to Respond to a Cyber-Incident

Nearly half (46 percent) of executives in a Deloitte poll say their organizations have experienced a cybersecurity incident over the past year — and that they’re still no closer to being ready for the next event.

The survey, of more than 3,150 professionals, found that a lack of organizational policy awareness when it comes to cybersecurity is hampering efforts to improve incident response benchmarks. About a third (30 percent) of CEO and executive-level respondents identified a lack of employee understanding of the organization’s cyber-incident response plan as their biggest challenge when it comes to dealing with an attack.

Read more about the findings of the new survey on Threatpost.

3 Out of 4 Employees Pose a Security Risk

Despite concerted efforts by many US organizations to improve security awareness among users, a new study shows they still have a long way to go. Some 75% of respondents today pose a moderate or severe risk to their company’s data, according to MediaPRO’s third annual State of Privacy and Security Awareness Report, and 85% of finance workers show some lack of data security and privacy knowledge.

The firm surveyed more than 1,000 employees across the United States to quantify the state of privacy and security awareness in 2018. More people fell into the risk category this year than in 2017 – and that number had nearly doubled since the inaugural survey.

Read more about the disturbing findings of the report on DarkReading.

How insider fraud can be detected and avoided in the enterprise

The CERT/CC defines insider fraud as “an insider’s use of IT for the unauthorized modification, addition or deletion of an organization’s data (not programs or systems) for personal gain or the theft of information that leads to an identity crime.” The U.S. Secret Service defines identity crime as “the misuse of personal or financial identifiers in order to gain something of value and/or facilitate some other criminal activity.”

Information targeted for fraud covers a wide range of personal data, including personal identification data, personal financial data, and personal medical data. Understanding the insider threat requires understanding what motivates people to behave, whether that behavior is positive or negative.

Read more about IT sabotage and insider threats, and learn about the preventative measures organizations can take, on TechTarget.

One in five employees share their email password with co-workers

Small to medium-sized businesses are hit with nearly 4,000 cyber attacks per day — and that number is only expected to grow, according to a new report. Small businesses are even more likely to be targeted by malicious hackers, but the actions of small business employees and leaders reveal little is actually being done to address the negligence towards security.

Chicago, IL-based IT consultancy for SMBs, Switchfast surveyed over 600 small business leaders and small business employees about their cyber security habits. Cyber attacks have huge consequences for business. The survey found that three out of five (60 percent) of small businesses that suffered a breach are likely to go out of business within six months.

Read more about the findings of the new Switchfast survey on TechRepublic.

Machine Identities Need Protection, Too

Machine identities should have as much protection as human credentials, though most organizations lag far behind in shielding computers and devices from prying eyes, according to a recent study. The study, conducted by Forrester Consulting on behalf of Venafi, reports that, while 96% of IT executives said that machine identities should be protected, 80% said they have trouble delivering that protection.

And the issues aren’t just with protecting data on the systems from hackers on the Dark Web; 61% of those responding said their biggest concern from poor machine identity protection comes from internal data theft.

Read more about the findings of the new study on DarkReading.