Tech Center Insider Threat
Dark Reading's Insider Threat Tech Center is a unique Web destination that offers breaking news, opinion, and exclusive reports on all aspects of internal security threats, and the technologies and practices used to prevent them.
Featured Commentary
-
Jared ThorkelsonSafeguarding Your Data Against The Two-Bit Ne'er-Do-Well
A real-life data breach incident underscores the importance.
News
-
How Lockheed Martin Phishes Its Own
Defense contractor built an internal spearphishing simulation program amid concerns of increasing targeted attacks
-
Should Insiders Really Be Your Biggest Concern?
Verizon's Data Breach Investigations Report shows that by volume of breach occurrences, external attackers cause problems the majority of the time
-
How To Successfully Phish Your Own Firm
CSOs share advice, war stories on internal simulated phishing attacks for user awareness training
-
Slide Show: 8 Egregious Examples Of Insider Threats
Real-world case studies from the CERT Insider Threat Center
-
Ten Key Steps To Success In Data Loss Prevention
DLP could protect your enterprise from data leaks, but implementation is no cakewalk. Here are some tips to make it easier
More Stories
- Hacking The User Security Awareness And Training Debate
- Don't Make Users A Security Punching Bag
- NASA Tightens Security In Response To Insider Threat
- Botnet Business Booming
- Overprivileged, Well-Meaning, And Dangerous
By The Numbers
When Trusted Business Partner Insiders Strike
When trusted business partners handle your sensitive information, their insiders are your insiders. According to a recent CERT survey, the majority of IP theft and IT sabotage insider incidents at business partner organizations are performed by technical employees while fraud is committed mostly by non-technical staff.
Source: Insider Threat From Trusted Business Partners, CERT, 2012
Commentary
-
Safeguarding Your Data Against The Two-Bit Ne'er-Do-Well
A real-life data breach incident underscores the importance of employing even the most basic levels of security protection
-
How Well Do You Know Your Data?
The more you know about your data, the more effectively you can protect it
-
All Security Technologies Are Not Data Loss Prevention
While security technologies may share the common goal of protecting an organization's sensitive data, not all can -- or should -- be called data loss prevention
-
Data Loss Prevention: What's The Use?
Why deploy data loss prevention technologies if there are ways to circumvent the system?
-
Don't Blame Me, I'm Just An Employee
If you're looking for a cure for mishandling of sensitive data, then look no further than your own management team
Around the Web
- Bitcoin exchange: Greedy traders to blame for DDoS attack
- I don’t need to cover my traces, or do I?
- Week in review: Carberp Trojan developers arrested, thousands of compromised ...
- Court says Hannaford breach lawsuit doesnt meet standards of classaction
- Sophos flagship web security product open to attack
Dark Reading Reports
-
Ten Steps To Success In Data Loss Prevention
Don't let anyone tell you that implementing a DLP system is easy. It takes time, patience and diplomacy to ensure that technical requirements, security policy and business needs are balanced. In this Dark Reading report, we recommend the 10 steps that must be taken to keep company data safe - and business managers and users happy and productive.
-
Securing the Mobile User
The complexity of managing mobile devices should get easier going forward, but that's not the case right now. As traditional laptop PCs continue to die a slow death, most IT departments will be forced to alter the way they approach client management. Despite the growing popularity and acceptance of the bring-your-own-device - or BYOD - movement, there are a number of things working against IT. Fortunately, there are also a number of tools, some of them free, that security professionals can use along with strong policy and best practices to close the enterprise mobile security gap.
-
Making Insiders Foot Soldiers In Enterprise Security
Insider threat-borne attacks remain the minority of data breaches but tend to inflict the most damage - especially when it comes to intellectual property theft. In this retrospective of recent Dark Reading coverage, we look at the hot trends and tips on how to flip the equation on the insider threat.
- Writing and Enforcing an Effective Employee Security Policy
- Five Steps To Protecting Intellectual Property
- Monitoring and Controlling Privileged User Access
- How to Prevent an Illicit Data Dump
- Email and Data Loss
- An Insider Threat Reality check
- Compliance From the Inside Out: Are Your Insider Threat Controls In Place?
Other reports from the Insider Threat Tech Center:
Whitepapers
- Transitioning Business Continuity To The Cloud
- Cloud-based data backup: A buyer's guide - How to choose a third-party provider for development, management of your data backup solution
- Connecting the Dots: Are You Seeing the Complete Big Data Picture?
- How to test and launch a world-class application
- Applying Agile Principles to Smarter Product Development
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.