Wednesday, September 27, 2023

Security Boulevard Logo

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming Webinars
    • Calendar View
    • On-Demand Webinars
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Content
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
    • Techstrong.tv Podcast
    • TechstrongTV - Twitch
  • Library
  • Related Sites
    • Techstrong Group
    • Cloud Native Now
    • DevOps.com
    • Security Boulevard
    • Techstrong Research
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • Devops Chat
    • DevOps Dozen
    • DevOps TV
  • Media Kit
  • About
  • Sponsor

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Hot Topics
  • Google LibWebP Arbitrary Code Execution Vulnerability (CVE-2023-5129) Notification
  • Cyber Week 2023 & The Israel National Cyber Directorate Presents - Scaling up Cyber Capacity Building: The Sectoral Approach to Critical Infrastructure Protection
  • ZenRAT Targets Windows Users with Fake Bitwarden Site
  • Meet the Ona: Stefan Popa
  • RATs, rootkits, and ransomware (oh my!)
Analytics & Intelligence Security Bloggers Network Threats & Breaches 

Home » Cybersecurity » Analytics & Intelligence » Insider Threats are on the Rise

SBN

Insider Threats are on the Rise

by Jane Grafton on June 30, 2020

Insider threats are on the rise. The global pandemic has seen an exponential growth of cyberattacks targeting remote workers. This has dramatically impacted organizations worldwide as they struggle to maintain a secure working environment. With COVID-19, we have seen a dramatic increase in insider threats across the board, including malicious employees, accidental negligence, third party contractor or vendor misuse, and account compromise attacks. We’ve seen layoffs and reductions in work hours resulting in job dissatisfaction. Disgruntled employees can quickly turn into malicious actors looking for financial gain. The statistics aren’t encouraging. We need a better way to fight the rise of insider threats.

WSJ Survey Found 67% Of Companies Worry About Malicious Employees

In a recent Wall Street Journal Pro Research Survey of cybersecurity executives at nearly 400 companies, 67% said they were concerned about malicious employees. The results were published on Monday, June 22, 2020. The larger the company, the greater the concern about malicious insiders. Further, concern over the rise of insider threats grows to a greater degree than concern about other cybersecurity threats.

AWS Builder Community Hub

Percentage of respondents who consider the following actors to be cybersecurity threats:

The publication also points out that companies are struggling with solutions to address the rise of insider threats. It is not easy to detect malicious employees before they exfiltrate data or IP. Behavioral analytics is one of the most successful technologies to proactively identify in real-time when an employee’s behavior differs enough to be suspect – to then be reviewed for corrective action.

DHS Expands Insider Threat Program

In other news, the Department of Homeland Security announced on June 16, 2020 that the agency is expanding its Insider Threat Program (ITP). The program will expand from those having access to classified materials to encompass, “all those with past or current access to DHS facilities, information, equipment, networks, or systems.”

Why do you think that is? As we’ve seen time and time again, the insider threat includes employees, partners, vendors, and contractors – past and present. The DHS found that the behavioral indicators it had been using to flag cases for additional analysis were created for a smaller population. They did not account for the expanded scope of the ITP. The historical trends and specific conduct missed critical insider access beyond the scope of the original ITP. This just proves the point that coverage is critical when it comes to predicting, detecting, and stopping the insider threat. The Edward Snowden case is an unforgettable reminder that organizations must include third party vendors and subcontractors in their insider threat programs. To combat the rise of insider threats, you need to implement comprehensive coverage to include the extended workforce and partner community.

The Enemy Within: How Insider Threats Are Changing

Gurucul was fortunate to participate on a recent Threatpost Webinar entitled, “The Enemy Within: How Insider Threats Are Changing.” During the webinar, the panelists discussed how to detect and prevent today’s insider-based malicious activity. With the rise in work from home cyberattacks, the conversation turned to how to address phishing scams, business email compromise, spoofing, and impersonation attacks.

Employee training and awareness is critical to overcoming the cybersecurity gaps heightened by the porous remote work perimeter. Technology plays a huge part as well. Once again, behavioral analytics takes center stage as a crucial weapon in the fight against insider threats. Behavior is the leading threat indicator when it comes to detecting malicious insider activity. Machine learning based behavior analytics has proven to successfully and continuously predict and stop insider threats in real-time.

During the webinar, the Threatpost editors polled the audience on the rise of insider threats. Here is what we learned:

 

How vulnerable is your organization to insider threats?
Insider Threat Program
Insider Risk

 

Where Do We Go from Here?

There’s no doubt we will continue to see the rise of insider threats during this global pandemic. Best practices dictate we all need to pay closer attention to what we’re doing online with company data on personal devices, over WiFI networks. We also need to implement the right tools and technologies to bridge the gap between what we can and can’t control. We can’t control cybercriminals and they are incessantly leveraging COVID-19 in their account compromise, BEC and impersonation attacks.

Gurucul can help. We work with the Carnegie Mellon University CERT team on best practices for using threat intelligence to identify insider threat behavior patterns. Contact us for details.

The post Insider Threats are on the Rise appeared first on Gurucul.


Recent Articles By Author
  • UEBA vs SIEM: The Key Differences of Each Solution
  • What is XDR? Concepts and Benefits
  • RSA 2023 Survey Reveals the Biggest SIEM Challenges Facing the SOC Today
More from Jane Grafton

*** This is a Security Bloggers Network syndicated blog from Blog – Gurucul authored by Jane Grafton. Read the original post at: https://gurucul.com/blog/insider-threats-are-on-the-rise

June 30, 2020June 30, 2020 Jane Grafton Account Compromise, behavior analytics, Blog, insider threat
  • ← Hunters Raises $15 Million in Series A Funding to Speed Enterprise Breach Detection & Response with Autonomous Threat Hunting
  • Expanding the Serverless War Chest With AWS EFS →

Techstrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Thu 28

A Guide to Smart Dependency Management

September 28 @ 12:00 pm - 1:00 pm
Oct 03

Way Too Vulnerable: Uncovering the State of the Identity Attack Surface

October 3 @ 11:00 am - 12:00 pm
Oct 11

ASPM: Leveling the AppSec Playing Field

October 11 @ 1:00 pm - 2:00 pm
Oct 16

Shadow Access: Where IAM Meets Cloud Security

October 16 @ 3:00 pm - 4:00 pm
Oct 17

Securing Cloud-Native Applications Across the Software Development Life Cycle

October 17 @ 11:00 am - 12:00 pm
Oct 18

Live Workshop on ‘SCA 2.0’: Using Runtime Analysis to Find High-Risk SCA Vulnerabilities

October 18 @ 12:00 pm - 1:30 pm
Oct 19

Managing Security Posture and Entitlements in the Cloud

October 19 @ 1:00 pm - 2:00 pm
Oct 24

When Seconds Matter: Real-Time Cloud Security With AWS and Sysdig

October 24 @ 11:00 am - 12:00 pm
Oct 24

Reporting From the Pipeline: The State of Software Security in DevOps

October 24 @ 1:00 pm - 2:00 pm
Oct 26

How to Shift Left the Right Way

October 26 @ 3:00 pm - 4:00 pm

More Webinars

Subscribe to our Newsletters

TSTV Podcast

Most Read on the Boulevard

Building Your Incident Response Team
Qakbot Takedown Resembles Hack Back, Will Botnet, Malware Be Resurrected?
More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator
‘All of Sony’ Hacked, Claims Ransomed.vc Group
Data Breaches from MOVEit Zero-Day Still Piling Up
A Guide to Understanding the Three CMMC Levels
The Role of AI and Machine Learning in Strengthening Cloud Security
Unlocking IoT Endpoint Security in 2023: What You Need to Know
LastPass: ‘Horse Gone Barn Bolted’ is Strong Password
Cyber Week 2023 & The Israel National Cyber Directorate Presents – AI Governance in the Wake of ChatGPT – Policy and Governance

Download Free eBook

Managing the AppSec Toolstack

Industry Spotlight

Xenomorph Android Banking Trojan Makes Landfall in US
Application Security Cybersecurity Data Security Featured Identity & Access Industry Spotlight Malware Mobile Security News Security Boulevard (Original) Spotlight Threats & Breaches 

Xenomorph Android Banking Trojan Makes Landfall in US

September 26, 2023 Jeffrey Burt | Yesterday 0
More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator
Analytics & Intelligence API Security Application Security AppSec Cloud Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security Deep Fake and Other Social Engineering Tactics Editorial Calendar Endpoint Featured Governance, Risk & Compliance Humor Identity & Access Identity and Access Management Incident Response Industry Spotlight Insider Threats Malware Mobile Security Most Read This Week Network Security News Popular Post Regulatory Compliance Securing the Cloud Securing the Edge Security at the Edge Security Awareness Security Boulevard (Original) Social Engineering Software Supply Chain Security Spotlight Threat Intelligence Threats & Breaches Vulnerabilities Zero-Trust 

More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator

September 25, 2023 Richi Jennings | 2 days ago 0
Google: Chromebooks Will Get 10 Years of Software, Security Updates
Application Security Cybersecurity Data Security Endpoint Featured Industry Spotlight Malware Mobile Security Network Security News Security Boulevard (Original) Spotlight 

Google: Chromebooks Will Get 10 Years of Software, Security Updates

September 19, 2023 Jeffrey Burt | Sep 19 0

Top Stories

ZenRAT Targets Windows Users with Fake Bitwarden Site
Cloud Security Cybersecurity Data Security Featured Identity & Access Malware Network Security News Security Boulevard (Original) Social Engineering Spotlight Threat Intelligence Threats & Breaches 

ZenRAT Targets Windows Users with Fake Bitwarden Site

September 27, 2023 Jeffrey Burt | 3 hours ago 0
Sysdig Adds Ability to Detect Threats in Real-Time to CNAPP
Application Security Cloud Security Cybersecurity Endpoint Featured Incident Response Network Security News Security Boulevard (Original) Social - Facebook Spotlight 

Sysdig Adds Ability to Detect Threats in Real-Time to CNAPP

September 27, 2023 Michael Vizard | 6 hours ago 0
Microsoft Brings Passkey Support to Windows 11
Application Security Cloud Security Cybersecurity Data Security Featured Identity & Access Mobile Security Network Security News Security Boulevard (Original) Social - Facebook Spotlight 

Microsoft Brings Passkey Support to Windows 11

September 27, 2023 Jeffrey Burt | 6 hours ago 0

Security Humor

Randall Munroe’s XKCD ‘Lying’

Randall Munroe’s XKCD ‘Lying’

Security Boulevard Logo White

DMCA

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: [email protected]

Useful Links

  • About
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • DMCA Compliance Statement
  • Privacy Policy

Related Sites

  • Techstrong Group
  • Cloud Native Now
  • DevOps.com
  • Digital CxO
  • Techstrong Research
  • Techstrong TV
  • Techstrong.tv Podcast
  • DevOps Chat
  • DevOps Dozen
  • DevOps TV
Powered by Techstrong Group
Copyright © 2023 Techstrong Group Inc. All rights reserved.