Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

 Insider Threat

Lessons on insider threats

Brian Anderson, CMO, BeyondTrust • February 02, 2012

Every company in every part of the world is subject to some level of insider threat.
 

Some 2M possibly affected by NYSEG, RG&E data compromise

January 25, 2012

Unauthorized individuals gained access to the personal data belonging to customers of New York State Electric & Gas (NYSEG) and Rochester Gas & Electric (RG&E), which are owned by Iberdrola USA.
 

NYC authorities charge 55 in cyber fraud, ID theft ring

December 19, 2011

The defendants were part of a coordinated operation that resulted in the theft of more than $2 million from JP Morgan Chase Bank, TD Bank, Citibank, Discover and American Express.
 

Man charged with hacking Hoboken, N.J. mayor's email

November 10, 2011

Patrick Ricciardi, 45, allegedly abused his access as an information systems specialist to spy on official emails meant for Hoboken, N.J. Mayor Dawn Zimmer.
 

White House order tackles insider threat post-WikiLeaks

October 07, 2011

The order follows a seven-month, government-wide review, prompted by the leak of classified U.S. documents by whistleblower site WikiLeaks.
 

Countrywide insider gets eight months in prison for theft

September 28, 2011

A senior analyst at Countrywide Financial was ordered to pay $1.2 million in restitution after pleading guilty to his role in a scam to steal personal data of customers.
 

Security supervisor nabbed for bot herding

August 05, 2011

Montreal-based security supervisor Joseph Mercier has been charged by the RCMP after allegedly developing malware to create a botnet.
 

UCLA Health System fined over celebrity patient snooping

July 11, 2011

UCLA Health System must pay $865,500 as part of a settlement with the U.S. Department of Health and Human Services (HHS) over complaints that employees snooped on the health records of two celebrities.
 

California state workers' data taken from state offices

July 01, 2011

The personal information of thousands of current and former California state employees was improperly copied to a hard drive and removed from state offices.
 

Alberta school board loses sensitive flash drive

April 20, 2011

A USB stick containing the personal information of thousands of employees of Alberta's Edmonton Public School Board has gone missing.
 

Wind power company disputes alleged SCADA hack

April 18, 2011

A major U.S. energy supplier has found no evidence of breach despite claims by a former employee that he hacked into the company's New Mexico wind turbine facility as revenge for being fired.
 

Former Gucci insider charged with hacking network

April 05, 2011

A former network engineer at Gucci has been charged with hacking into the company's network, deleting data and shutting down servers and networks.
 

Texas hospital hacker sentenced to nine years

March 21, 2011

A former Dallas hospital guard was sentenced last week to nine years in federal prison for breaking into hospital computers, planting malicious software and planning a distributed-denial-of-service (DDoS) attack.
 

Goldman Sachs programmer sentenced for code theft

March 21, 2011

A software programmer charged with copying secret financial trading code from Goldman Sachs computers was sentenced Friday to eight years in prison. Sergey Aleynikov, 41, a naturalized U.S. citizen who emigrated from Russia, had resigned from his $400,000-a-year Goldman Sachs position in June 2009 to take a new job in Chicago. Before going, however, he uploaded code related to the firm's proprietary trading program from his workstation to a server in Germany and then downloaded it to his computers at home. Aleynikov was also ordered to pay a $12,500 fine and serve three years of supervised release following his sentence.
 

Post-WikiLeaks: Back to basics

Maurice Hampton, information security and privacy services leader, Clark Schaefer Consulting March 01, 2011

Dust off your company's risk assessment process and make sure it is up to date because this is where your approach to defending against a WikiLeaks type of threat is going to start.
 

Internal review: The insider threat risk

February 01, 2011

Thanks to WikiLeaks and a struggling economy, the internal threat has risen to a new level of prominence. Dawn Cappelli of Carnegie Mellon describes the profile of the rogue insider.
 

Debate: The model of 'trust but verify' is effective at mitigating the insider threat.

February 01, 2011

Debate: The model of 'trust but verify' is effective at mitigating the insider threat.
 

SC Magazine hosts e-symposium today on insider threat

January 25, 2011

Join us online today for the latest free SC eSymposium: Insiders with access.
 

Protecting the network from inside the firewall

Derek Manky, Fortinet January 19, 2011

Today's security appliances do a great job patrolling the network perimeter, but what do you do when the threat is coming from inside the building?
 

2011: A security manager's wish list

A. N. Ananth, CEO, Prism Microsystems January 18, 2011

This year, thanks to a renewed focus on the insider threat, the longings of the security professional may come to fruition.
 

WikiLeaks-prompted assessments due this month

January 06, 2011

Federal departments and agencies that handle classified data are required by Jan. 28 to complete an assessment of the safety measures they have in place to protect national security information, an effort prompted by the leak of confidential U.S. documents by whistleblower site WikiLeaks.
 

Hired guns: Cyberwarfare and cyber-mercs

Charles Jeter, ESET cybercrime investigator January 06, 2011

Whether the trend of privatizing military resources is good or not, it is already happening.
 

Save the U.S. anti-hacking law for the real hackers, not Assange

December 16, 2010

I'm sorry to hear that federal prosecutors, in a desire to get WikiLeaks founder Julian Assange to the United States to face charges for his role in the exposure of classified diplomatic cables, are turning to the Computer Fraud and Abuse Act for help.
 

How the WikiLeaks crisis could have been prevented

Ken Ammon, chief strategy officer, Xceedium December 16, 2010

Trusting no one may soon become the new mantra in IT security, given the leak of sensitive U.S. diplomatic cables.
 

Stuxnet's persistent legacy: Cybersecurity is blended security

Charles Jeter, ESET cybercrime investigator December 09, 2010

Were cybersecurity and Stuxnet involved with Iranian Prof. Shahriari's recent assassination? What are the game-changing physical security considerations for chief information officers?
 

WikiLeaks prompts U.S. government to assess security

December 01, 2010

The federal government is moving quickly to deploy new security measures in light of the leak of hundreds of thousands of classified U.S. documents by whistleblower site WikiLeaks.
 

Stuxnet: Precursor to kinetic warfare?

Charles Jeter, ESET cybercrime investigator December 01, 2010

Was the delay of the Stuxnet worm cleanup the true motive behind the assassination of Iranian cyberwarfare and nuclear scientist Majid Shahriari? Was Wikileaks content responsible for the timing of the attack? Analysis follows.
 
Popular Topics
4G-war Advanced Persistent Threat Adware AMTSO Anonymous Botnets Cyber Attacks Cyber Crime Data Breach Data Breaches Encryption Hackers Hacktivism Health Care IT Security Java Malware Mobile Devices Phishing Risk Management Social Security Numbers Stolen Information Survey Trojans Vulnerabilities & Flaws