Your security holes could be inside and not out

While you should be very vigilant about protecting your company’s data from outside security threats. It’s also very important to watch for those WITHIN your company who could do harm. You don’t want a police state in your business or to build a company full of mistrusing spies. However, it is important to know that crime can happen from those outside AND inside your company.
A recent case is the AOL employee who stold and sold AOL email addresses to spammers.
Governmetn Computer News writes It doesn’t take a techie to abuse an IT system from the inside, and inside attackers do not fit any common profile.
Those are among the findings of the Secret Service and the CERT Coordination Center in a study of insider attacks against financial organizations.
Damage to the victimized institutions ranged from a few hundred dollars to hundreds of millions of dollars.
The report, Illicit Cyber Activity in the Banking and Finance Sector, is the first in a series of Insider Threat Studies in critical infrastructure sectors.
The report was funded by the Homeland Security Department and conducted by the Secret Service’s National Threat Assessment Center and the CERT/CC of Carnegie Mellon University’s Software Engineering Institute.