What WikiLeaks tells us about the inevitability of insider threats

May 11, 2011
Cyber Security, FedCyber Wire
No Comment

via Government Computer News

Although the WikiLeaks incident moved the insider threat risk back to center stage, the essence of this message had already been steadily communicated in several cybersecurity initiatives, including the most recent 2010 Verizon Data Breach Investigations Reports based on a study conducted by the Verizon RISK Team in cooperation with the U.S. Secret Service.

Among the many takeaways, the DBIR reported that, of the 900-plus incidents of data breaches involving more than 900 million compromised records during the six-year history of the DBIR, approximately 48 percent involved insiders.

Whereas public, private and even military institutions have all acknowledged the harsh reality and complexity of combating the insider threat, none of these institutions has uncovered the “silver bullet” to rid their respective organizations of this pervasive and debilitating threat, largely due to a combination of the following reasons:

  • Current personnel adjudication processes are fallible.
  • The insider threat problem is not purely a technology or a policy problem.
  • It is difficult to accurately predict if an employee will go “rogue.”

Continued here.