The Enemy Within: Understanding Insider Threats to Cybersecurity - Ep. 94
Manage episode 414224299 series 3361845
What is an insider threat? How do you mitigate the impact of an insider theat? From malicious insiders driven by profit or spite to negligent insiders prone to carelessness, and compromised insiders unwittingly manipulated by external forces, Rob Aragao and Stan Wisseman try to unravel the layers of this critical cybersecurity concern.
Drawing from recent incidents like the Sisense breach and the XZ exploit, light is shed on the evolving tactics employed by malicious actors, highlighting the pressing need for robust detection and response mechanisms.
Links to points raised in this episode:
- What is an insider threat?
- Insider Threats in 2024: 30 Eye-Opening Statistics
- Insider Threat Statistics for 2024: Reports, Facts, Actors, and Costs
- Ponemon Institute's 2023 Cost of Insider Risks study
- MITRE ATT&CK framework
- MITRE’s Insider Threat TTP Knowledge Base project
- XZ exploit
- Yakima Valley Memorial Hospital breach
- Sisense breach
- Yahoo IP theft
- Tesla insider threat incident
Blog by Stan -
Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via reimaginingcyber@gmail.com
125 episoder