ISR News: 2009 - Year of the Insider Threat

March 10, 2009 by ADMIN

Share |

Excerpt From BankInfoSecurity.com

Is 2009 the Year of the Insider Threat? Last August’s arrest of a Countrywide employee in California illustrates the potential impact of a single insider with access to sensitive information. The FBI charged the former employee with taking 2 million names and personal information from the mortgage bank and selling them for a profit.

Another example: Last month’s indictment in federal court of an ex-consultant at Fannie Mae for allegedly placing a logic timebomb on the mortgage giant’s computer systems last October. If not discovered, this trap would have wiped out all the company’s 4,000 computer servers.

The increased number of employers handing out pink slips doesn’t help quell the threat, with a record number of people on the unemployment lines and others at work worried about their own positions. “We’re going to see some insider events where insiders are tempted enough by money to enable these compromises to take place from outsiders, allowing access to payment data and account information,” says Mike Urban, Senior Director of Fraud Solutions at Fair Isaac, predicts.

The areas once thought separate — financial fraud and information security — are converging, he notes. “People are laid off, you’ve got fewer people doing work — a lot of things that would be normally picked up, or watched or noticed will not be because the person that used to do that isn’t there anymore,” Urban says.

Full Article: BankInfoSecurity.com

These icons link to social bookmarking sites where readers can share and discover new web pages.

Share |

Filed under: Breach, Class Action Lawsuit, D&O Liability, Financial, ISR News, Insider Threat, hackers, identity-theft, malware, national security, privacy

Tags: 2009, access, Anthony M. Freed, Bailout, bankinfosecurity.com, Banks, bounty, Breach, class action, Class Action Lawsuit, computer, confidential, consumer, consumer product liability, Consumers, control, Costs, Countrywide, criminal, cyber security, Cyber Security Institute, cyber terrorism, cyber-crime, cybersecurity, D and O liability, Data, Dollars, due diligence, Economy, electronic database, Fair Isaac, Fannie Mae, Finance, Financial, Financial Identity, fraud, governance, hackers, homeland Security, Identity, Information, Information-Security-Resources.com, InfoSec, infrastructure, insider, ISR, laptops, law, legal, liability, mergers, Mike Urban, misuse, national security, News, online fraud, outsourcing, paperless, personal data, press release, privacy rights, privacy rights clearing house, regulations, regulatory, Report, risk, Sarbanes-Oxley, Security, shareholder derivative, Stocks, System, systems, theft, third party, Uncategorized, unemployment, valuation, vendors, Wall Street, worm, zero day attack

Comments

Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

Categories
- Anthony M. Freed (26)
- Bill Brenner (2)
- Bob Violino (1)
- Bozidar Spirovski (23)
- Breach (540)
- Britt Womelsdorf (5)
- By Dr. InfoSec (2)
- Cara Garretson (7)
- CCCNews (1)
- Chorey Taylor & Feil (8)
- Christophe Veltsos (2)
- Christopher Burgess (7)
- CIOZone (26)
- Class Action Lawsuit (111)
- Cloud computing (114)
- Coby Royer (5)
- CTO Forum (9)
- D&O Liability (602)
- Daniel Wallace (5)
- Danny Lieberman (11)
- DataLine (10)
- David Alexander (2)
- Derek Crawford (1)
- Doug Pollack (7)
- due diligence (311)
- Fame Foundry (1)
- FEATURE ARTICLE (428)
- Financial (588)
- Fred Leland (7)
- Gene Kim (3)
- Government (374)
- Greg George (5)
- H1N1 (15)
- hackers (540)
- healthcare (135)
- Heather Bourgoin (1)
- HomeATM (8)
- identity-theft (536)
- IDExperts (17)
- Ike Z. Devji (1)
- Infosec Island Network (39)
- Insider Threat (491)
- Internet Crime Complaint Center (1)
- Internet Security Alliance (72)
- ISR News (321)
- Jacqueline Herships (2)
- Jenni Hesterman (3)
- John M. Salomon (2)
- John Watkins (7)
- John-Patrick Skaar (2)
- Kaliber Data Security and Compliance Consultants (3)
- Kat Sanders (2)
- Ken Leeser (3)
- Kevin L. Jackson (10)
- Kevin M. Nixon (21)
- Larry Ketchersid (1)
- Laton McCartney (7)
- Lauren Taylor (1)
- Linda McGlasson (1)
- malware (502)
- Mark Smail (1)
- Mark Wright (1)
- Mel Duvall (3)
- Michael Eggebrecht (3)
- Michael Lohr (1)
- Michael O'Conner (4)
- MicroSolved (1)
- Mike Duncan (3)
- Mike Meikle (4)
- Mike Spinney (1)
- Military (212)
- national security (454)
- PCI (309)
- PCI Security Standards Council (32)
- Physical Security (11)
- privacy (553)
- Rachel James (10)
- reach (12)
- Rebecca Herold (16)
- Richard Stiennon (44)
- Robert Siciliano (34)
- Sarbanes-Oxley (503)
- ScamStop (2)
- Sean Wilkins (2)
- Semyon Dukach (1)
- Simon Heron (14)
- Software Associates (11)
- Steven Fox (19)
- SUPERAntiSpyware (3)
- Sybase (6)
- Symplified (5)
- The Jester (8)
- The Privacy Professor (16)
- Thomas R. Fox (8)
- Tom Groenfeldt (2)
- Tom McLain (2)
- Trefis (14)
- Tripwire (18)
- Uncategorized (621)
- virtualization (102)
- Webcast (49)

Copyright © 2008 To Present · Information-Security-Resources.com (Permissions and Disclaimers) You are welcome to use, for any lawful purpose, the information that WE write and post to this site, provided that you link to and attribute Information-Security-Resources.com and the author(s). Any 3rd-party material linked to or referenced on this site is subject to the rights of the owners of that material.

We provide business consulting services. We do NOT provide legal or financial advice. There is no attorney / client relationship, or any privilege associated with our services. Nothing expressed on this site, or in association with our services, should be taken as legal counsel or financial advice. The opinions expressed on this site are the personal opinions of the writer(s), not those of any other individuals or organizations.

Theme: Copyright © 2008 · Revolution Code Blue designed by Brian Gardner

Information-security-resources.com is part of the Infosec Island network.