An insider threat is a malicious threat to an organization that comes from people within the organization, such as employees, former employees, contractors or business associates, who have inside information concerning the organization’s security practices, data and computer systems. The threat may involve fraud, theft of confidential or commercially valuable information, the theft of intellectual property, or the sabotage of computer systems.
If your company wins a classified contract you should receive a Threat Assessment. This document is prepared for you so that you will understand who is out to get your product, device, weapon, or component.
Jackson Cosko accessed Senate files to collect personal information on senators and then doxed them – revealing the home addresses of Sen. Mitch McConnell, Sen. Mike Lee, Sen. Orrin Hatch, and Sen. Lindsey Graham.
Mittesh Das was sentenced to 2 years imprisonment and fined $1.5 Million for implanting a “logic bomb” in a U.S. Army personnel computer system. This is a stark reminder that we must take care to reduce insider threats.