Limit your exposure to insider threats

While everyone is worried about North Korea, the NSA, and other external third-party threats, the biggest threat to network resources and sensitive data is still the people you trust most. Employees with access to information pose a significant risk–whether it’s inadvertent or with malicious intent.

You still have to make sure you’re employing security best practices to guard against external threats, but organizations need to take additional precautions to protect against individuals inside the company compromising the network, or exposing confidential data.

I wrote a post outlining some ways to limit exposure to insider threats:

Target, Home Depot, Michael’s, Dairy Queen, Sony…the list of major data breaches that have occurred over the last year or two is extensive. While most—if not all—of those attacks were a function of external hackers penetrating the network, authorized users inside the network still pose a more substantial threat.

The fact is that where the rubber meets the road so to speak, most attacks are “insider attacks”. In many of the data breaches cited above, an external hacker was responsible but the attack succeeded because the hacker was able to obtain or compromise valid network credentials. In other words, from the perspective of the company or the network, they were essentially insider attacks.

CoSoSys, a provider of endpoint security solutions, recently surveyed its clients (all with an average of 500 computers) and found that 40 percent of potential customers would not do business with a company that suffered a recent data breach.

A data breach has serious consequences both directly and indirectly. Lost revenue, and a tarnished brand reputation both inflict harm long after the actual incident is resolved and the breach has been cleaned up. Still, many organizations don’t take necessary steps to protect themselves from a potentially detrimental breach.

Read the full post at CSOOnline: 5 things you can do to limit your exposure to insider threats.

• About
• Latest Posts

Tony Bradley

Editor-in-Chief at TechSpective

I have a passion for technology and gadgets--with a focus on Microsoft and security--and a desire to help others understand how technology can affect or improve their lives. I also love spending time with my wife, 7 kids, 4 dogs, 7 cats, a pot-bellied pig, and sulcata tortoise, and I like to think I enjoy reading and golf even though I never find time for either. You can contact me directly at tony@xpective.net. For more from me, you can follow me on Twitter, Facebook, Instagram and LinkedIn.

Latest posts by Tony Bradley (see all)

• Ransomware-Proof Your Data Backups with Immutability - April 10, 2024
• Unearthing Identity Threat Exposures - April 1, 2024
• Future of Tech and Cybersecurity Looks Bright Thanks to AI - March 26, 2024