Access and Feeds

Security: Insider Threats Pose Biggest Problem

By Dick Weisinger

Inside security threats are the biggest dangers for application security. Inside threats can occur when a disgruntled employee acts against a company or when an employee inadvertently  expose confidential data to someone outside the organization.

Jon Heimerl, manager at NTT Security, said that “a malicious insider – a guy who gets a job and does industrial espionage or gets disgruntled – those breaches tend to be bigger because they have more access to a lot of data and know exactly where to look to find data to steal. That’s the problem hackers usually have. They have to find what, and where, that cool data is.”

Some of the enablers of inside security threats, based on a survey by Cybersecurity Insiders, include users with excess privileges (37 percent), increasing number of devices with access to sensitive information (36 percent), and increasing IT complexity (35 percent).

Steven Bullitt, Vice President at NTT Security, said that “whether it’s an accidental insider threat, where an employee sends sensitive documents to a competitor‘s email or a negligent insider threat, where an employee downloads unauthorized software and spreads a virus through the company, organizations must have a cybersecurity plan in place to minimize these risks.”

Holger Schulze, CEO of Cybersecurity Insiders, said that “insider threats are often more damaging than attacks from malicious outsiders or malware. That’s because they are launched by trusted insiders – both malicious insiders and negligent insiders with privileged access to sensitive data and applications.”

Digg This
Reddit This
Stumble Now!
Buzz This
Vote on DZone
Share on Facebook
Bookmark this on Delicious
Kick It on DotNetKicks.com
Shout it
Share on LinkedIn
Bookmark this on Technorati
Post on Twitter
Google Buzz (aka. Google Reader)

Leave a Reply

Your email address will not be published. Required fields are marked *

*