Threat: Ask a random stranger to name the most dangerous threats out there and they’ll probably point to hackers and malicious insiders. Ask an IT professional in the federal government, though, and they’re more likely to finger careless insiders who expose sensitive data without even realizing it.
In fact, 56 percent of federal government IT personnel surveyed recently by SolarWinds called untrained insiders a major threat. By contrast, 48 percent said the same of the “general hacking community” and just 36 percent named malicious insiders.
Though federal agencies aren’t necessarily representative of end user organizations at large, Brown notes, their experiences aren’t wildly different from prevailing norms either. You don’t need a government ID to use a risky public Wi-Fi service somewhere, download a virus onto your laptop, and then bring it back inside the perimeter with you when you return to the office.
Countermeasure: According to Brown, behavior analytics software can help mitigate careless insider threats by rapidly identifying unusual events, like users probing file shares they’ve never accessed before or suddenly uploading data to an IP address in China. Access rights management (ARM) software that limits how much data compromised users can jeopardize is another essential safeguard, he continues, especially in an age of anytime, anywhere mobility.
“If you’re going to allow access from anywhere, you don’t really have a perimeter, so access control becomes extremely important,” Brown says. That’s exactly why SolarWinds released SolarWinds ARM, an access rights management system, late last year, he notes.
More Galleries like This
At the managed services vendor’s Navigate conference this week, CEO Michael George (pictured) walked attendees through what he contends is an inescapable set of both existential threats and massive opportunities for managed service providers
Experts from SolarWinds, Trend Micro, Vade Secure, WatchGuard Technologies, and Webroot discuss five things worth worrying about online, and suggested countermeasures for mitigating them.
If you simply can’t get enough vendor news from this year’s CompTIA ChannelCon event you’re in luck. We’ve got one last round of updates for you from ESET, ID Agent, Intermedia, and Barracuda MSP.
Datto, NinjaRMM, The 20, Connect Booster, SOCSoter, and Nexogy share details on what's happening now and what's coming up next for channel pros.
Intel, Kaspersky Lab, Barracuda, AlienVault, and RapidFire Tools are among the many vendors who made security news on the second day of this year’s RSA Conference.