BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Insider Threats – Are They Just Human Nature?

Posted December 27, 2011    Peter McCalister

This week’s culprit of data misuse: Telstra, Australia’s leading telecommunications and information services company. It was reported that personal and account details of approximately one million customers were available on the Web – in plain sight for any Internet browser to see. While the mess is being called inadvertent, the potential damage to customers is the same, regardless if the breach was an accident.

On the other end of the spectrum from accidental insiders are intentionally malicious insiders. Even U.S. government entities are falling victim to these types of insider attacks. According to a recent CSO article, two employees at New Jersey Motor Vehicle Commission have been charged with identity theft after allegedly using their insider credentials to obtain personal identifiable information (name, addresses, social security numbers and dates of birth) of unsuspecting residents.

And also take into account that the Ponemon Institute along with HP just released a global survey titled “The Insecurity of Privileged Users” indicating that organizations continue to give too much user access to sensitive data. What a shock! The survey indicates that more than 60 percent of participants reported that privileged users access sensitive or confidential data out of curiosity, not job function. Human nature sometimes gets the best of us, and that should be reason enough for companies to make implementing least privilege a high priority.

Leave a Reply

Additional articles

PBPS-screenshot-blog aug2014

Failing the Security Basics: Backoff Point-of-Sale Malware

Posted August 22, 2014    Marc Maiffret

At the beginning of this month, US-CERT issued a security alert relating to a string of breaches that had been targeting Point of Sale (POS) systems. The alert details that attackers were leveraging brute forcing tools to target common remote desktop applications such as Microsoft’s Remote Desktop, Apple Remote Desktop, Splashtop and LogMeIn among others….

Tags:
, , , , , ,

Troubleshooting Windows Privilege Management Rules with Policy Monitor

Posted August 21, 2014    Jason Silva

When defining and testing PowerBroker for Windows rules for production or pilots, customers sometimes tell us, “I don’t think this policy / program is working.” This is usually a case of the policy not properly triggering because of the way the rule was created. A unique feature of PowerBroker for Windows compared to other solutions is a client-side…

Tags:
, , ,
darren-mar-elia

BeyondTrust Webcast: Darren Mar-Elia’s 4 Active Directory Change Scenarios to Track

Posted August 20, 2014    Chris Burd

In our latest webcast, we joined Darren Mar-Elia, CTO at SDM Software, to discuss best practices for Active Directory (AD) change management. Here are some key takeaways from the presentation, followed by a link to a full-length video of the presentation. Mar-Elia kicks things off with a critical insight: that the best AD change management…

Tags:
, , , , , , ,