10 Mistakes End Users Make That Drive Security Managers Crazy
Here's a list of common, inadvertent missteps end users make that can expose company data.
![](https://eu-images.contentstack.com/v3/assets/blt6d90778a997de1cd/blt067ba0d6bc86a27e/64f0d77fa01b5a942d5176cc/Slide-1-CoverArt.jpg?width=700&auto=webp&quality=80&disable=upscale)
There's so much news about major hacks from nation-states such as Russia, North Korea, Iran, and various criminal gangs in Eastern Europe.
But what's less understood is that an important percentage of breaches stem from insiders. Forrester Research found that nearly 40% of all data breaches are caused by insiders. And of those insider breaches, 26% are caused by abuse or malicious intent by insiders, and 56% are caused by inadvertent misuse or sheer accidents by employees.
"Data is too often mishandled by employees," says Merritt Maxim, a principal analyst at Forrester Research who serves security and risk professionals. "A good tip for companies is to take more time classifying their data. If people understand what the organization considers sensitive, there's less of a chance that it will be mishandled."
Based on interviews with Forrester's Maxim and IDC's Frank Dickson and Robert Westervelt, we pinpointed 10 common ways employees mishandle - and inadvertently breach - an organization’s security.
End users often assume that when they are using cloud-based workloads they are automatically secure. Not so. S3 stands for simple storage service and when people put workloads in the cloud, it is still their responsibility to, at the very least, set a password. Administrators should keep on top of the staff to set simple passwords, but sometimes they forget as well. This is clearly a security hole that can be plugged by just paying some careful attention to security basics.
Image Source : Shutterstock
There's so much news about major hacks from nation-states such as Russia, North Korea, Iran, and various criminal gangs in Eastern Europe.
But what's less understood is that an important percentage of breaches stem from insiders. Forrester Research found that nearly 40% of all data breaches are caused by insiders. And of those insider breaches, 26% are caused by abuse or malicious intent by insiders, and 56% are caused by inadvertent misuse or sheer accidents by employees.
"Data is too often mishandled by employees," says Merritt Maxim, a principal analyst at Forrester Research who serves security and risk professionals. "A good tip for companies is to take more time classifying their data. If people understand what the organization considers sensitive, there's less of a chance that it will be mishandled."
Based on interviews with Forrester's Maxim and IDC's Frank Dickson and Robert Westervelt, we pinpointed 10 common ways employees mishandle - and inadvertently breach - an organization’s security.
About the Author(s)
You May Also Like
CISO Perspectives: How to make AI an Accelerator, Not a Blocker
August 20, 2024Securing Your Cloud Assets
August 27, 2024