{"id":2733,"date":"2017-08-15T23:56:38","date_gmt":"2017-08-15T15:56:38","guid":{"rendered":"https:\/\/www.microdium.net\/public\/bci-malicious-insiders-considered-the-most-damaging-threat-vector-for-organizations\/"},"modified":"2017-08-15T23:56:38","modified_gmt":"2017-08-15T15:56:38","slug":"bci-malicious-insiders-considered-the-most-damaging-threat-vector-for-organizations","status":"publish","type":"post","link":"https:\/\/www.microdium.com\/public\/2017\/08\/15\/bci-malicious-insiders-considered-the-most-damaging-threat-vector-for-organizations\/","title":{"rendered":"BCI: Malicious insiders considered the most damaging threat vector for organizations"},"content":{"rendered":"<div class=\"K2FeedImage\"><img decoding=\"async\" src=\"https:\/\/www.microdium.net\/public\/wp-content\/uploads\/2017\/08\/9af67b32dfcb227d976889324117b54c_S.jpg\" alt=\"BCI: Malicious insiders considered the most damaging threat vector for organizations\" \/><\/div>\n<div class=\"K2FeedIntroText\">\n<h5>The Business Continuity Institute<\/h5>\n<p>&#013;<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/www.microdium.net\/public\/wp-content\/uploads\/2017\/08\/pv6vgtp9r50qk4oaoixi.jpg\" alt=\"\" border=\"0\" \/><\/p>\n<p>&#013;<\/p>\n<div>&#013;<\/p>\n<p>The importance of managing internal threats to win at cyber security has been emphasised\u00a0in a study by\u00a0<a href=\"http:\/\/notifier.mynewsdesk.com\/wf\/click?upn=51gwse2n30yQiu0aXsVC-2FDiQlHhXZMBAJ-2FV3V0OPQcI-3D_VQBJMzKloVp-2B8METKs9NBTEFNmEXdZTkGwkWg9-2F4llVK5QoSqXmOQel2-2BajvCbWJ2mivuQxVzdK3APsyKpDrqc2Haua48vPEdGMZL-2F3ReKTKnDJ54A2B5qGzzJSX-2FcuolLDSFQgoMV3Yec0s8mROsN2DuP6m1QbAChckXaqE1-2BPwjgNUX4k36U6cfix8JGQOkQ3UkM6v0ObqsAjH56AYije1w9wDsZRs-2F2oC2hR48KfQGkJmgSWAJo3nfWIlYnJ8Tl7atg4ui6rz3XloHfyZC5KzPn7w7udTu9T3u99oW6YY6cHAkkdW1FmC6A71eGUYyEr7-2B3obnCm76tnV2fcvsK65QMm0Ju9sZnBiF8JhZ6PKxJcvlgzQvvCpm9PtizuBuINk0ubIxOt7KuCoEYgMiw-3D-3D\" target=\"_blank\" rel=\"noopener\">Haystax Technology<\/a> and\u00a0<a href=\"http:\/\/notifier.mynewsdesk.com\/wf\/click?upn=fDp-2BTllF4pC6mfJid0O2Q4ABEfRlE2PbI7Idr6SBuxU-3D_VQBJMzKloVp-2B8METKs9NBTEFNmEXdZTkGwkWg9-2F4llVK5QoSqXmOQel2-2BajvCbWJ2mivuQxVzdK3APsyKpDrqc2Haua48vPEdGMZL-2F3ReKTKnDJ54A2B5qGzzJSX-2FcuolLDSFQgoMV3Yec0s8mROsN2DuP6m1QbAChckXaqE1-2BPwjgNUX4k36U6cfix8JGQObsNpZiv6oMNtHq-2BBdXcBilyszuy7u7SozZVj-2FWMeTRdd1r2jWbqMxNOqAwzDlRMpD1nt7SqYXK91Hrjh6zeiQ9TQF0I19UdXzSTSmP1lp3n6jmHWsVIGBiK-2BktWmF91Mq5P5kcJUdC5bQQV3QHr7hJ0q8NrLjdRuFAYKoOP4EJOpvXCyDqas8upsoEJdhvUkA1LzkotqBRqm1WNT-2FD6Oig-3D-3D\" target=\"_blank\" rel=\"noopener\">SANS<\/a> which\u00a0found that\u00a040% of respondents\u00a0to their survey\u00a0rated malicious insiders (insiders who intentionally do harm) as the most damaging threat vector their companies faced.<\/p>\n<p>&#013;<\/p>\n<p>Furthermore,\u00a0<a href=\"http:\/\/notifier.mynewsdesk.com\/wf\/click?upn=51gwse2n30yQiu0aXsVC-2FFn42-2B4hidFxQwJXAs65w-2FXucjbyowiA-2B-2F-2F90fzrNOOmSynhgjBbVXpwgtoriOmWiw-3D-3D_VQBJMzKloVp-2B8METKs9NBTEFNmEXdZTkGwkWg9-2F4llVK5QoSqXmOQel2-2BajvCbWJ2mivuQxVzdK3APsyKpDrqc2Haua48vPEdGMZL-2F3ReKTKnDJ54A2B5qGzzJSX-2FcuolLDSFQgoMV3Yec0s8mROsN2DuP6m1QbAChckXaqE1-2BPwjgNUX4k36U6cfix8JGQONaEN1Esy8Ddw-2FnTmsew9FokK6LwkEkLsRubV98sSEZDiJwRSk1hkJ3BtcPKFFn9b5uduqcizmXteULG5Ce6Rj-2BQSlZfoD-2FEZtim3KTWGIY-2BkHPml3lof2dbc0-2BWuSW-2FqhEP3TtWaxY-2B0FWdzGiXZDVod-2FhzWm3bMA-2BQfX3udJDvTdguUgkEmcjSF1opj8sqSMC6iHBYRcKTMs0yWgwkHSw-3D-3D\">Defending Against the Wrong Enemy: 2017 SANS Insider Threat Survey<\/a> revealed that\u00a0nearly half (49%) said they were in the process of developing a formal incident response plan with provisions to address insider threat. This further illustrates the urgency with which companies are moving to address this threat vector.<\/p>\n<p>&#013;<\/p>\n<p>&#8220;We are encouraged to see organizations recognizing malicious insiders as the top threat vector, but we are not seeing the necessary steps taken to address it,&#8221; said Haystax CEO, Bryan Ware. &#8220;Existing tools aren&#8217;t smart enough, or don&#8217;t have the context needed to identify malicious insiders. What&#8217;s needed is contextually-smart, user behavior analytics that produce actionable intelligence for decision makers.&#8221;<\/p>\n<p>&#013;<\/p>\n<p>Despite the increased awareness of the threat from malicious insiders, many organizations continue defending against the wrong enemy by failing to implement effective detection tools and processes to identify these malicious insiders. A third of survey respondents (34%) have these tools and technology, but have not used them operationally and more than a third (38%) of survey respondents are in the process of re-evaluating internally to better identifying malicious insiders.<\/p>\n<p>&#013;<\/p>\n<p>&#8220;It is misleading to see that 60% of respondents said they had not experienced an insider attack,&#8221; said SANS instructor and survey report author, Eric Cole, PhD. &#8220;The rest of our data indicates that organizations still are not effective at detecting insider threats, so it&#8217;s clear that most either didn&#8217;t notice threats or attacks, or didn&#8217;t realize those incidents involved malicious insiders, or outsiders using compromised insider credentials.&#8221;<\/p>\n<p>&#013;\n<\/p><\/div>\n<\/div>\n<p>&#013;<br \/>\nSource: DRJ New feed<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Business Continuity Institute &#013; &#013; &#013; The importance of managing internal threats to win at cyber security has been emphasised\u00a0in a study by\u00a0Haystax Technology and\u00a0SANS which\u00a0found that\u00a040% of respondents\u00a0to their survey\u00a0rated malicious insiders (insiders who intentionally do harm) as the most damaging threat vector their companies faced. &#013; Furthermore,\u00a0Defending Against the Wrong Enemy: 2017 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":2734,"comment_status":"false","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11],"tags":[15],"class_list":["post-2733","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-disaster-recovery-cybersecurity-news-malaysia","tag-about"],"_links":{"self":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/2733","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/comments?post=2733"}],"version-history":[{"count":0,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/posts\/2733\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/media?parent=2733"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/categories?post=2733"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.microdium.com\/public\/wp-json\/wp\/v2\/tags?post=2733"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}