Insider Threats

MUST READ How to stop a rogue user from circumventing network security TIP - Receive peer advice regarding ways to correct damages caused by a rogue user and learn what to to to prevent this from happening again Securing Web apps against authenticated users TIP - Improve Web site security by securing Web applications from authenticated users and avoiding client-side authentication. Thwarting insider threats TIP - Five simple measures you can take to protect your organization from insider attacks.

NEWS: 1 - 3 of 27

	Societe Generale bolsters internal controls, discovers second insider SearchSecurity.com | 27 May 2008 ARTICLE - Trader Jerome Kerviel conducted more than $7 billion in fraudulent trades with the help of an assistant, according to an investigation conducted by banking giant Societe Generale

	Security pros focused on internal threat, training SearchSecurity.com | 05 May 2008 ARTICLE - A recent survey shows organizations are worried about risks posed by employees and increasingly interested in training as the network perimeter continues to crumble.

	Deloitte survey finds overconfidence, lack of planning on security SearchSecurity.com | 12 Feb 2008 ARTICLE - A survey of 100 technology, media and telecommunications firms found that while IT pros are confident in handling future threats, about half lack a formal security strategy.

	VIEW ALL NEWS ON INSIDER THREATS

EXPERT TECHNICAL ADVICE: 1 - 3 of 23

INSIDER THREATS EXPERTS
			Ed Skoudis Founder and Senior Security Consultant with Intelguardians ASK A QUESTION

	Data loss prevention from the inside out 05 Feb 2008 TIP - In this tip, contributor Noah Schiffman highlights internal risks as well as some storage-specific DLP issues.

	Should keystroke loggers be used in enterprise investigations? 04 Jan 2008 EXPERT ANSWER - Keystroke loggers can provide a great deal of insight into what a perpetrator may be up to inside an enterprise. But not so fast. Ed Skoudis reveals what needs to be done before gathering your first keystroke.

	What are the proper procedures for handling a potential insider threat? 19 Sep 2007 EXPERT ANSWER - In this SearchSecuity.com Q&A, Mike Rothman discusses how corporations can avoid insider threats by forming an incident response plan and monitoring employee behavior.

	VIEW ALL EXPERT TECHNICAL ADVICE ON INSIDER THREATS

REFERENCE & LEARNING: 1 - 3 of 19

	Information security book excerpts and reviews SearchSecurity.com | 22 May 2008 INFORMATION SECURITY BOOKSHELF - Visit the Information Security Bookshelf for book reviews and free chapter downloads.

	Risk management audit SearchSecurity.com | 30 Aug 2006 LEARNING GUIDE - This article explores the audit function in the insider threat management process.

	Risk management: Implementation of baseline controls SearchSecurity.com | 30 Aug 2006 LEARNING GUIDE - This fourth article in the Insider Threat Management Guide examines the implementation of baseline controls.

	VIEW ALL REFERENCE & LEARNING ON INSIDER THREATS

MAGAZINE CONTENT (free subscription required): 1 - 3 of 7

	Reasearch on Coding Backdoors Presents Ugly Picture Information Security Magazine | 01 May 2008 COLUMNS - Editor's Desk: Backdoor Bedlam

	Secure Reads Information Security Magazine | 01 May 2007 HOT PICK & PRODUCT REVIEWS -

	Inviting Risk Information Security Magazine | 01 May 2007 FEATURES - CONTRACTOR SECURITY The contractor you hire can become the source of a security breach unless you take precautions.

	VIEW ALL MAGAZINE CONTENT ON INSIDER THREATS

WEBCASTS: 1 - 3 of 3

	New technologies for IP protection - Expert Webcast VIEW WEBCAST PREMIERED:   19 JAN 2006, 12:00 EST (17:00, GMT) SUMMARY:   Learn how host-based content monitoring tools monitor individual machines to ensure that employee behavior adheres to corporate security policy.

Solving the Internal Threat - Vendor Webcast VIEW WEBCAST PREMIERED:   17 NOV 2005, 14:00 EST (19:00, GMT) SUMMARY:   Established information security vendors avoid claims of protecting companies from the internal or insider security threat. In today's high-tech world, organizations need a new approach to internal IT security which enables them to detect when their IT infrastructure, enterprise data, corporate policy and government regulations have been compromised. Discover new security solutions in this webcast.

	Enterprise Data Protection & Privacy - Vendor Webcast VIEW WEBCAST PREMIERED:   21 SEP 2005, 14:00 EDT (18:00, GMT) SUMMARY:   Watch industry Analyst Jon Oltsik discuss how organizations must transition from a passive approach to data security to an active approach that addresses new threats to sensitive data and increasingly strict legislation.

	VIEW ALL WEBCASTS ON INSIDER THREATS

DEFINITIONS: 1 - 1 of 1

	insider threat 20 Aug 2005 WORD - An insider threat is a malicious hacker (also called a cracker or a black hat) who is an employee or officer of a business, institution, or agency. The term can also apply to an outside person who poses as an employee or ...

	VIEW ALL DEFINITIONS ON INSIDER THREATS

	SEE ALSO - Topics Related to Insider Threats:  Organized Cybercrime