Blog

Posts Tagged ‘insider threat’

H&R Block Manager Steals Tax Customer’s Identities and Refunds

Wednesday, March 28th, 2012

When it comes to data protection and guarding sensitive information from being leaked, most organizations have policies and tools in place designed to defend against malicious outsiders. The reality, though–which is demonstrated time and time again–is that authorized users on the inside pose a much greater threat.

A manager of an H&R Block tax preparation office in California was arrested for stealing the identities of H&R Block clients and filing fraudulent tax returns on their behalf. A post on AccountingToday.com about the incident states, “He prepared bogus tax returns in their names designed to obtain tax refunds and credits, according to prosecutors, and then used H&R Block Emerald Cards to withdraw the fraudulently obtained refunds from automated teller machines.”

You should have tools and policies in place to guard your data against unauthorized access from the outside. But, don’t forget that authorized users are in a position to intentionally steal or compromise data, or inadvertently share or expose it. You need to make sure you have tools in place to monitor and defend against data leaks from the inside as well.

Tags: , , , , , ,
Posted in Data Storage Security | No Comments »

Protecting Sensitive Information from Inside Threats

Tuesday, March 16th, 2010

I had the privilege of joining host Tom D’Auria for the weekly IMI-TechTalk radio show once again this week. The show airs weekly on KFNX AM 1100 out of Phoenix, AZ at 3pm local time. Because Arizona doesn’t play Daylight Savings with the rest of the country, though, that means that half the year its on Mountain time and the other half its on Pacific time–so for now the show airs at 6pm Eastern / 5pm Central. If you are not in the Phoenix listening area, you can also listen to the show streamed live via the Web.

The topic of discussion this week was Protecting Sensitive Information from Inside Threats. Tom and I talked about the prevailing perception that information security is an ‘us vs. them’ or ‘inside vs. outside’ battle, while the reality is that internal employees pose a much larger threat than malware or malicious attacks from outside. The default security model relies on simple file and folder permissions to determine access rights for sensitive information, but offer no safeguards or protections regarding what the authorized user does with the data once its accessed.

Click here to listen to the recorded MP3 of the show: Protecting Sensitive Information from Inside Threats.

Tags: , , , ,
Posted in Data Storage Security, Events | 1 Comment »

Best Practices for Protecting Against Insider Threat

Tuesday, December 1st, 2009

CERT, Carnegie Mellon University Software Engineering Institute’s center for conducting and coordinating information security research, has written the Common Sense Guide to Prevention and Detection of Insider Threats, Version 3.1.

In describing the audience for the guide the document notes “Insider threats are influenced by a combination of technical, behavioral, and organizational issues, and must be addressed by policies, procedures, and technologies. Therefore, it is important that management, human resources, information technology, software engineering, legal, security staff, and the “owners” of critical data understand the overall scope of the problem and communicate it to all employees in the organization.”

At 88 pages, the CERT guide is fairly comprehensive. It provides a range of best practices addressing the different aspects noted above–technical, behavioral, and organizational issues–that impact the insider security threat.

 

Tags: , , , ,
Posted in Data Storage Security | 2 Comments »

IMI-TechTalk- Enemy Within: The Insider Security Threat

Monday, November 23rd, 2009

This week, Tony Bradley, Zecurion ‘chief’ product evangelist, joined host Tom D’Auria on the IMI-TechTalk radio show to talk about the internal security threat posed by trusted employees. The show “Enemy Within: The Insider Security Threat” provides listeners with valuable insight into the present and growing internal threat to confidential and sensitive information.

Bradley discusses the issues faced by IT and security administrators and the need to strike a balance between protecting data and enabling productivity. He also stressed how important it is to leverage tools that proactively enforce policies and protect data without further burdening the IT staff.

The show originally aired on Sunday, November 22, 2009 at 5pm Eastern / 4pm Central on KFNX AM 1100 which airs in the Greater Phoenix area. Those outside of the Phoenix area can listen to the weekly show on the live Web simulcast.

Click here to download or play the MP3 recording of the show: Enemy Within: The Insider Security Threat.

Tags: , , , , ,
Posted in Data Storage Security | 4 Comments »