Saturday, April 2, 2011

Attacks by Insiders Are More Costly Than Outsider Attacks

According to the 2011 CyberSecurity Watch Survey, insiders were the cause of 21% of attacks (insiders are employees or contractors with authorized access) while 58% were caused by outsiders (those without authorized access).

However 33% of survey respondents view insider attacks to be more costly than outsider attacks. Moreover, insider attacks are becoming more sophisticated.
"It is a much more challenging problem to defend against insiders stealing classified information or trade secrets to which they have authorized access." - Dawn Cappelli, Tech Manager, Insider Threat Center, CERT
Insider attacks are not just monetarily costly, but survey respondents highlighted the harm to the organization's reputation, especially when an attack involves the theft of confidential or proprietary information.
Learn how an Identity and Access Intelligence service can cost effectively discover user access vulnerabilities and insider abuse - with no hardware and no on-site software.
70% of insider incidents are handled internally without legal action so the general public may be unaware of the number of insider events or the extend of the damage.

The 2011 CyberSecurity Watch Survey is a cooperative effort of CSO, the U.S. Secret Service, the Software Engineering Institute CERT® Program at Carnegie Mellon University and Deloitte.

For the entire report - "2011 CyberSecurity Watch Survey - How Bad Is the Insider Threat?" by CSO, the U.S. Secret Service, the Software Engineering Institute CERT Program at Carnegie Mellon University and Deloitte, January 2011

Sources:
(a) 2011 CyberSecurity Watch Survey: Organizations Need More Skilled Cyber Professionals to Stay Secure - CSO Magazine, January 2011

No comments:

Popular Posts

Copyright © 2010-2017 by Veriphyr Incorporated, All Rights Reserved.

Contact us at Veriphyr.com.