SEARCH RESULTS
 
Showing 1-10 of 37 records
 
Expand article

5 ways insiders exploit your network

2008-05-07 00:00:00 by HASH0x8b09b24 in Network World on Security
 
A number of recently publicized incidents serve as a harsh reminder that insiders represent a common and often misunderstood security threat. Data theft and sabotage can result in hard costs, compliance-related problems, legal fees, productivity loss and, possibly most costly, loss of reputation
 
Tags: misunderstood security threat, loss, productivity loss, legal fees, hard costs, incidents serve, harsh reminder, data theft, insiders represent
 
 
 
 
Expand article

Insiders Behaving Badly

2008-07-31 13:30:24 by Editor in IEEE Security and Privacy
 
This column goes beyond previous insider analyses to identify a framework for a taxonomy of insider threats including both malicious and inadvertent actions by insiders that put organizations or their resources at some risk. The framework includes factors reflecting the organization, the individual, the information technology system, and the...
 
Tags: framework includes factors, framework, previous insider analyses, information technology system, insider threats, insiders, inadvertent actions, resources, taxonomy
 
 
 
 
Expand article

More trustworthy election systems via SDL?

2008-02-04 23:34:00 by sdl in The Security Development Lifecycle
 
...insiders: The Diebold system lacks adequate controls to ensure that county workers with access to the GEMS central election management system do not exceed their authority Lets look at the Malicious Software first: While theres a lot of discussion of general concerns with viruses and malicious payloads, Id like to drill down on a specific...
 
Tags: machine security concerns, security concerns, election systems, election, security, security researchers, election systems margin, margin, election management system
 
 
 
 
Expand article

Online poker cheating demonstrates insider risk

2008-06-18 00:00:00 by HASH0x8b4395c in Network World on Security
 
When determining the risk to a system and the data stored on it, insider threats are generally regarded as lower risk. Despite the complete access (high risk) that insiders generally have, most of the time insiders are trusted agents (very low risk) on the network. When it breaks down, it can break down in a catastrophic manner, especially if...
 
Tags: risk, lower risk, low risk, insiders, time insiders, insider threats, complete access, catastrophic manner, network
 
 
 
 
Expand article

The Top Ten Cybersecurity Threats for 2008

2008-01-05 17:22:36 by Tim Bass in The Complex Event Processing Blog
 
...insiders Natural disasters, accidents or errors without malicious intent Acknowledgements and References A special word of appreciation for the reviews, comments and suggestions from the Certified Information Systems and Security Professionals (CISSPs) community and the LinkedIn professional network In particular, comments and suggestions...
 
Tags: cybersecurity threats, theft, criminal, criminal manipulation, identity theft, top, attacks, comments, service attacks
 
 
 
 
Expand article

Orthogonal Blogging at the SOA Horse Races

2008-01-20 06:30:30 by Tim Bass in The Complex Event Processing Blog
 
...insiders perspective on, and perhaps even transform, the software industry. This experience, working for a software company, was an eye-opener, and one I am most likely not to repeat. I have never been interested in selling softare. I am interested in real business solutions Candidly speaking again, many software companies tend to live in La...
 
Tags: real, real-world, real business solutions, soa, soa horse, real business, software, software companies, customers
 
 
 
 
Expand article

Hacking Power Networks

2008-01-22 14:24:55 by schneier in Schneier on Security
 
...Insiders may have been involved, so was this a computer security vulnerability at all? We have no idea Cyber-extortion is certainly on the rise; we see it at Counterpane. Primarily it's against fringe industries -- online gambling, online gaming, online porn -- operating offshore in countries like Bermuda and the Cayman Islands. It is going...
 
Tags: power, power companies, companies, cia actively, power outages, cia, cia rumor, disrupt power equipment, attacks
 
 
 
 
Expand article

Cashing in on employee theft, or honest whistleblower?

The Article has images
2008-02-25 14:03:19 by Evan Francen in The Breach Blog
...insiders to follow suit On one hand authorities catch criminals, which is great! On the other hand, we just enabled (and in some circles encouraged) insider criminal activity and potentially employee fraud. Read the LGT Group Media Communique , it is very interesting stuff Past Breaches Unknown
 
Tags: confidential, confidential data, kieber, named heinrich kieber, lgt, lgt trust, data, confidential information, information
 
 
 
 
Expand article

The Fox and the Henhouse

2008-01-28 15:02:17 by Burton Group in Security and Risk Management Strategies Blog
 
...insiders who have developed and operated it The only way to design a system to be secure against these insider attacks is to have strong attestation, transaction tracking, dual control, and supervision features - in other words, to ensure that activities are carried out in public and reviewed in a timely way Societe Generale appears to...
 
Tags: societe generale, societe generale begins, yesterday societe generale, societe generale appears, risk management lessons, risk management, risk management personnel, plain vanilla futures, apparently
 
 
 
 
Expand article

The National Cyber Exercise

2008-02-06 13:29:21 by Burton Group in Security and Risk Management Strategies Blog
 
...insiders are a significant danger--is that someone attacked the off-limits exercise control computers, most likely a participant. When exercises have embarrassingly bad outcomes because people dont follow the rules, it frequently turns out that the rules have been designed to produce an unrealistically rosy picture of reality. The fact that...