SecurityRatty: tag: insider

"It Was an Insider!" = "Sorry, We Are Idiots!"

2008-04-02 13:11:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...insider? I think whoever made this one up was thinking like this We are PCI compliant, we pretend to have good security, etc we suffer a huge embarassing data loss how can we still justify our past efforts as worthwhile and "effective" (even though reality just proved they were not let's invent a factor that is known to bypass many of the...

Tags: insider, custom remote-control trojans, malicious hackers, data loss, fun chronology, theoretical warnings, downright idiotic, specific targets, past efforts

Insider Threats: the biggest Information Security risk

2008-05-10 15:00:00 by Stuart King in Stuart King's Security and Risk Management Blog

...Insider Threat Report 2006) have dealt with a security incident instigated by a current or former employee. I've been writing up some of my research into insider threats in the form of a paper describing the risks posed to a fictional multinational company, Acme Widgets plc. You can download the paper for free here . If you'd like to leave me...

Tags: insider threats, information, information security, current, paper, fictional multinational company, acme widgets plc, current employees, risks posed

Insider threat highlighted at audit conference

2008-03-11 00:00:00 by HASH0x8b3fa80 in Network World on Security

The recent scandal at French bank Société Générale has again highlighted how vulnerable companies are against insider threats, speakers said Tuesday at the European Computer Audit Control and Security Conference in Stockholm Protecting the Enterprise Network Through Web Security Advertisement New focus is being placed on securing...

Tags: insider threats, threats, enterprise network, web security, vulnerable companies, security conference, recent scandal, advertisement, focus

The insider threat - Lending Tree

2008-04-22 18:44:00 by Manu Namboodiri in Data Protection, Management and Leakage

...insider threat more seriously. Case in point - the recent news from Lending Tree about insiders giving out passwords to external entities Not that the above could have been easily circumvented by technology, but good process and education of employees would have helped. When trusted employees start sharing passwords, things become very...

Tags: insider threat, employees, unknown external threat, employees start, tree, time, passwords, process, external entities

The insider threat - jobs at risk!

2008-05-01 21:51:00 by Manu Namboodiri in Data Protection, Management and Leakage

...Insider threats are more troubling, since this is targeted at the most sensitive and valuable data - while the outsider threat depends a lot on luck to get to this

Tags: valuable, valuable data, data, sensitive data, sensitive, car seat, access controls, outsider threat depends, access

Log management as a tool against insider threats

2008-05-27 00:00:00 by HASH0x8b8c5b4 in Network World on Security

How can I leverage the log-management product I've bought for compliance to protect the network against insider threats as well? If I have a log management solution in place, will that be sufficient to protect my sensitive data? What other best practices are there, and can you provide a few real-world examples

Tags: insider threats, log management solution, real-world examples, sensitive data, protect, log-management product, compliance, network, sufficient

Online poker cheating demonstrates insider risk

2008-06-18 00:00:00 by HASH0x8b4395c in Network World on Security

When determining the risk to a system and the data stored on it, insider threats are generally regarded as lower risk. Despite the complete access (high risk) that insiders generally have, most of the time insiders are trusted agents (very low risk) on the network. When it breaks down, it can break down in a catastrophic manner, especially if...

Tags: risk, lower risk, low risk, insiders, time insiders, insider threats, complete access, catastrophic manner, network

Insider threat looms large as San Francisco's network crisis plays out

2008-07-16 00:00:00 by Ellen Messmer in Network World on Security

The unfolding cliffhanger in San Francisco this week - in which a city network administrator has been arrested for allegedly holding the network hostage - represents an extreme example of the insider threat that IT security vendors and others have been sounding the alarm about for years

Tags: insider threat, san francisco, city network administrator, security vendors, network hostage, extreme, represents, cliffhanger, week

The ART of Event Processing: Agility, Reuse, Transparency

2008-01-18 09:49:13 by Tim Bass in The Complex Event Processing Blog

...insider trading, and they ask Do you mind if we ask how? and you respond Good question, do you mind to wait a moment while I get you the contactinfo for the vendor because we dont have access to the source code or the actual key indicators (KIs Now, lets look at the white-box scenario Again, the nice auditors ask you, What does that...

Tags: simple laymans terms, laymans terms, event, terms, transparency, cep blog, blog, reuse, white box event

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo