Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Friday, September 14, 2007

Insider Threats Increase, But Damage Is Minimal

Annual Computer Security Institute study says employees are the source of most incidents – but not the biggest cost

The Computer Security Institute’s annual Computer Crime and Security Survey, which is scheduled for release later this week, reports that insider attacks have now surpassed viruses as the most common cause of security incidents in the enterprise.

Nearly 60 percent of respondents have experienced insider-related events in the past 12 months, while only 52 percent of companies reported a virus incident.

Yet while the average annual cybercrime losses per company more than doubled in the past year, almost two thirds (63 percent) of respondents said that losses due to insider-related events accounted for 20 percent or less of those losses.

Fifty percent cited the loss or theft of laptop or mobile devices, while 25 percent cited misuse of instant messaging services.

Another 25 percent said they had experienced “unauthorized access to information” in the past 12 months, and 17 percent said they have suffered loss or theft of customer/employee data.

“A great deal is made of the insider threat, particularly by vendors selling solutions to stop insider security infractions,” the report observes.

Some 30 percent of respondents stated that, despite new laws concerning breach disclosure, they experienced at least one incident that was never reported outside the organization.

Twenty-six percent said they did not report their incidents to law enforcement because of fears of negative publicity.

Posted on 09/14