BeyondTrust

Security In Context

Bringing you news and commentary on solutions and strategies for protecting your critical IT infrastructure.

Insider Threat Or Stalker?

Post by Peter McCalister January 24, 2012

We have talked about the various types of insider threats – accidental or malicious – at great length and here is a prime example of just how weird things can get when an employee decides to abuse privilege.

Juliah Kechil, a former healthcare assistant at Royal Liverpool university hospital has been fined and also ordered to pay a sum toward prosecution costs after she unlawfully accessed the medical records of five members of her ex-husband’s family in an effort to obtain their new telephone numbers. Now we could speculate about what went so wildly wrong that she was cut off from all forms of communication, and let’s be honest it could be fun to spin a tale, starting with out-of-hand fights and ending with the husband entering the witness protection program. The reality is probably much more boring, but the end result of her snooping through medical records for phone numbers is a complete abuse of privilege, and a little stalkerish.

The hospital was led to launch an investigation when the defendant’s former father-in-law contacted the hospital after receiving nuisance calls, which he suspected had been made by Kechil. Upon further investigation, the hospital learned she had no work related reason to access their records. The breaches were traced through audit trails linked to the defendant’s smartcard ID.

You can’t rely on your employees to always do the right thing, which is why having the right privilege access in place is critical.

Leave a Reply

Additional articles

smart rules manager for vulnerabilities - v2

A New Way of Looking at Vulnerabilities in Your Environment

Assets, users, vulnerabilities and exploits; all are common themes in my posts on BeyondInsight. With BeyondInsight v5.1, we unveiled a new way to view exploitable assets. Sure, most vulnerability management solutions link vulnerability data to exploit information, allowing tools like NeXpose and QualysGuard to list an asset, its vulnerabilities, and any related exploits. BeyondInsight does…

Post by Morey Haber April 23, 2014
Tags:
, , , , ,
smart rules manager for vulnerabilities

Staying on Top of the Latest Vulnerabilities with BeyondInsight v5.1

It’s no secret that dozens of new OS and application vulnerabilities are revealed every day. Staying on top of these new exposures normally requires paying for services or subscribing to multiple RSS feeds. BeyondInsight 5.1 provides customers with another option: a built-in, customizable vulnerability alerting system that delivers up-to-date information on the latest vulnerabilities in…

Post by Morey Haber April 21, 2014
Tags:
, , , , , ,
BI-Qualys-Connector-IMG1

Getting More Value from QualysGuard Vulnerability Data with BeyondInsight v5.1

If your vulnerability assessment scans can’t produce meaningful and actionable reports, performing a scan does no good for anyone. If you’ve read my other blog posts, you know I have no qualms about stating that BeyondTrust provides the best vulnerability reporting in the industry. Ask your favorite analyst and they’ll tend to agree. Of course,…

Post by Morey Haber April 18, 2014
Tags:
, , , , , , , ,