Friday, November 27, 2020
  • What is a Certificate Revocation List (CRL) vs OCSP | Keyfactor
  • DEF CON 28 Safe Mode Password Village ‘Hank Leininger’s ‘PathWell Dynamic Password Strength Enforcement’
  • XKCD ‘Linguists’
  • My Top 5 Blogs of the Year
  • DEF CON 28 Safe Mode Password Village ‘Getting Started with Hashcat’

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library
  • Related Sites
    • MediaOps Inc.
    • DevOps.com
    • Container Journal
    • Digital Anarchist
    • SweetCode.io
  • Media Kit

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Analytics & Intelligence Security Bloggers Network Threats & Breaches 

Home » Cybersecurity » Analytics & Intelligence » Insider Threats are on the Rise

Insider Threats are on the Rise

by Jane Grafton on June 30, 2020

Insider threats are on the rise. The global pandemic has seen an exponential growth of cyberattacks targeting remote workers. This has dramatically impacted organizations worldwide as they struggle to maintain a secure working environment. With COVID-19, we have seen a dramatic increase in insider threats across the board, including malicious employees, accidental negligence, third party contractor or vendor misuse, and account compromise attacks. We’ve seen layoffs and reductions in work hours resulting in job dissatisfaction. Disgruntled employees can quickly turn into malicious actors looking for financial gain. The statistics aren’t encouraging. We need a better way to fight the rise of insider threats.

WSJ Survey Found 67% Of Companies Worry About Malicious Employees

In a recent Wall Street Journal Pro Research Survey of cybersecurity executives at nearly 400 companies, 67% said they were concerned about malicious employees. The results were published on Monday, June 22, 2020. The larger the company, the greater the concern about malicious insiders. Further, concern over the rise of insider threats grows to a greater degree than concern about other cybersecurity threats.

Percentage of respondents who consider the following actors to be cybersecurity threats:

The publication also points out that companies are struggling with solutions to address the rise of insider threats. It is not easy to detect malicious employees before they exfiltrate data or IP. Behavioral analytics is one of the most successful technologies to proactively identify in real-time when an employee’s behavior differs enough to be suspect – to then be reviewed for corrective action.

DHS Expands Insider Threat Program

In other news, the Department of Homeland Security announced on June 16, 2020 that the agency is expanding its Insider Threat Program (ITP). The program will expand from those having access to classified materials to encompass, “all those with past or current access to DHS facilities, information, equipment, networks, or systems.”

Why do you think that is? As we’ve seen time and time again, the insider threat includes employees, partners, vendors, and contractors – past and present. The DHS found that the behavioral indicators it had been using to flag cases for additional analysis were created for a smaller population. They did not account for the expanded scope of the ITP. The historical trends and specific conduct missed critical insider access beyond the scope of the original ITP. This just proves the point that coverage is critical when it comes to predicting, detecting, and stopping the insider threat. The Edward Snowden case is an unforgettable reminder that organizations must include third party vendors and subcontractors in their insider threat programs. To combat the rise of insider threats, you need to implement comprehensive coverage to include the extended workforce and partner community.

The Enemy Within: How Insider Threats Are Changing

Gurucul was fortunate to participate on a recent Threatpost Webinar entitled, “The Enemy Within: How Insider Threats Are Changing.” During the webinar, the panelists discussed how to detect and prevent today’s insider-based malicious activity. With the rise in work from home cyberattacks, the conversation turned to how to address phishing scams, business email compromise, spoofing, and impersonation attacks.

Employee training and awareness is critical to overcoming the cybersecurity gaps heightened by the porous remote work perimeter. Technology plays a huge part as well. Once again, behavioral analytics takes center stage as a crucial weapon in the fight against insider threats. Behavior is the leading threat indicator when it comes to detecting malicious insider activity. Machine learning based behavior analytics has proven to successfully and continuously predict and stop insider threats in real-time.

During the webinar, the Threatpost editors polled the audience on the rise of insider threats. Here is what we learned:

 

How vulnerable is your organization to insider threats?
Insider Threat Program
Insider Risk

 

Where Do We Go from Here?

There’s no doubt we will continue to see the rise of insider threats during this global pandemic. Best practices dictate we all need to pay closer attention to what we’re doing online with company data on personal devices, over WiFI networks. We also need to implement the right tools and technologies to bridge the gap between what we can and can’t control. We can’t control cybercriminals and they are incessantly leveraging COVID-19 in their account compromise, BEC and impersonation attacks.

Gurucul can help. We work with the Carnegie Mellon University CERT team on best practices for using threat intelligence to identify insider threat behavior patterns. Contact us for details.

The post Insider Threats are on the Rise appeared first on Gurucul.


Recent Articles By Author
  • ABCs of UEBA: R is for Risk
  • Some 8 hour days feel like a week.
  • A Security Evolution: Taking Security Beyond SIEM with Behavior Analytics
More from Jane Grafton

*** This is a Security Bloggers Network syndicated blog from Blog – Gurucul authored by Jane Grafton. Read the original post at: https://gurucul.com/blog/insider-threats-are-on-the-rise

June 30, 2020June 30, 2020 Jane Grafton Account Compromise, behavior analytics, Blog, insider threat
  • ← Hunters Raises $15 Million in Series A Funding to Speed Enterprise Breach Detection & Response with Autonomous Threat Hunting
  • Expanding the Serverless War Chest With AWS EFS →

TechStrong TV – Live

Watch latest episodes and shows
Featured Blog

Eric Kedrosky

The Future of Multi-Cloud Security: A Look Ahead at Intelligent Cloud Security Posture Management Solutions

Eric Kedrosky

The Evolution of Cloud Security Posture Management

Eric Kedrosky

What Hyperautomation Means for Identity and Data Governance

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Now’s the Time to Revisit WFH Cybersecurity
Congress Passes IoT Security Act, but is it Toothless?
Sumo Logic Finds Attack Surface Expanding
Palo Alto Networks Surfaces AWS API Vulnerabilities
Cloud Compliance Doesn’t Equal Security
Cyber-Attacks Against Insurance Companies: How to Avoid the Risks
Seven Debunked Myths of Cybersecurity
New Study Says Cyber Security Technology Isn’t as Effective As It Should Be
The History of Cybersecurity | Avast
CISA Director Chris Krebs Fired, Common Sense and Section 230

Upcoming Webinars

Dec 01

Hotels, Hookups and Video Conferencing: A Top 10 Countdown to 2020’s Worst Data Breaches

December 1 @ 1:00 pm - 2:00 pm
Dec 02

DevSecOps: Best Practices for Enterprises

December 2 @ 11:00 am - 12:00 pm
Dec 02

Simple Alternative to Kubernetes: Container Orchestration with Nomad

December 2 @ 3:00 pm - 4:00 pm
Dec 03

How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case Study

December 3 @ 1:00 pm - 2:00 pm
Dec 07

The Battle for Container Security

December 7 @ 1:00 pm - 2:00 pm
Dec 08

XDR (Extended Detection and Response): The Next Generation of Protection

December 8 @ 11:00 am - 12:00 pm
Dec 10

Data Security for Contact Centers Leveraging Cloud Technologies

December 10 @ 3:00 pm - 4:00 pm
Dec 14

Issues and Answers in Cloud Security

December 14 @ 1:00 pm - 2:00 pm
Dec 15

12 Things to Get Right for Successful DevSecOps

December 15 @ 3:00 pm - 4:00 pm
Dec 16

Deliver your App Anywhere … Publicly or Privately

December 16 @ 3:00 pm - 4:00 pm

More Webinars

Download Free eBook

7 Must-Read eBooks for Security Professionals

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Cloud Compliance Doesn’t Equal Security
Cloud Security Cybersecurity Industry Spotlight Security Boulevard (Original) 

Cloud Compliance Doesn’t Equal Security

November 24, 2020 Vladi Sandler | 3 days ago 0
Now’s the Time to Revisit WFH Cybersecurity
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Now’s the Time to Revisit WFH Cybersecurity

November 23, 2020 A.N. Ananth | 4 days ago 0
Maintaining Governance and Security in Multi-Tool Environments
Cloud Security Cybersecurity Industry Spotlight Security Boulevard (Original) 

Maintaining Governance and Security in Multi-Tool Environments

November 20, 2020 Grant Ho | Nov 20 0

Top Stories

Google Finally Pulls Chinese Apps Stealing Personal Data
Analytics & Intelligence Cybersecurity Data Security Featured Incident Response Mobile Security News Security Boulevard (Original) Spotlight Threat Intelligence Threats & Breaches 

Google Finally Pulls Chinese Apps Stealing Personal Data

November 25, 2020 Richi Jennings | 2 days ago 0
FireEye Acquires Respond Software to Advance Cybersecurity AI
Analytics & Intelligence Cybersecurity Featured Incident Response News Security Boulevard (Original) Spotlight 

FireEye Acquires Respond Software to Advance Cybersecurity AI

November 24, 2020 Michael Vizard | 3 days ago 0
Palo Alto Networks Surfaces AWS API Vulnerabilities
Cloud Security Cybersecurity Featured News Security Boulevard (Original) Spotlight 

Palo Alto Networks Surfaces AWS API Vulnerabilities

November 23, 2020 Michael Vizard | 4 days ago 0

Security Humor

via the comic delivery system monikered Randall Munroe resident at XKCD !

XKCD ‘Linguists’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2020 MediaOps Inc. All rights reserved.

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.