Comments on: A Look into Insidious Threats – The Logical Bomb http://www.gfi.com/blog/insidious-threats-logical-bomb/?utm_source=rss&utm_medium=rss&utm_campaign=insidious-threats-logical-bomb Brought to you by GFI Software Fri, 13 Sep 2013 13:27:20 +0000 hourly 1 By: Emmanuel Carabott http://www.gfi.com/blog/insidious-threats-logical-bomb/comment-page-1/#comment-16019 Emmanuel Carabott Tue, 14 Dec 2010 18:55:08 +0000 http://www.gfi.com/blog/?p=2906#comment-16019 You’re right Mary K. It’s quite difficult to defend your systems against insider threats. Access Control, Division of labour, Monitoring, Patch management, Penetration testing and Security Policies might mitigate the problem a bit but it’s definitely no silver bullet.

Insider threats are always the most insidious!

]]> By: Mary K. http://www.gfi.com/blog/insidious-threats-logical-bomb/comment-page-1/#comment-15715 Mary K. Sun, 12 Dec 2010 17:09:11 +0000 http://www.gfi.com/blog/?p=2906#comment-15715 @sue walsh

Good point. I guess, despite all our discussions against external and third party threats to our systems, the most vulnerable access point would be the remote users themselves. No matter how secure we make our servers, our systems, or our workstations. How do you defend your own system against the people who are supposedly using it? The person who is employed to be building your security may very well be the biggest threat to it in the future.

]]> By: Emmanuel Carabott http://www.gfi.com/blog/insidious-threats-logical-bomb/comment-page-1/#comment-11762 Emmanuel Carabott Mon, 25 Oct 2010 16:03:06 +0000 http://www.gfi.com/blog/?p=2906#comment-11762 Indeed, security can be a tricky business. It is understandable that sometimes businesses decide to take the risk instead of mitigating because they think it is unlikely that such an event will happen to them. Of course unlikely doesn’t mean safe and if they’re hit then they decide that it’s time to act.

I think this is the point when one should realize that their previous choice was the wrong one. If you’re hit it doesn’t mean the odds have suddenly become worse for your business, if anything the odds may have somewhat lowered a bit (lighting doesn’t strike twice in the same spot kind of thinking) yet now the added security justifies the cost. To me that simply means that security justified the cost even previously; however, the business went with the unfortunate frame of mind that the specific risk couldn’t possibly happen to it.

Of course I am not saying that every single risk should be mitigated either. There is a line where the cost doesn’t justify the benefit; however, the ‘this can never happen to me’ frame of mind is dangerous when deciding where to draw that line.

]]> By: Sue Walsh http://www.gfi.com/blog/insidious-threats-logical-bomb/comment-page-1/#comment-10431 Sue Walsh Mon, 27 Sep 2010 04:33:06 +0000 http://www.gfi.com/blog/?p=2906#comment-10431 Disgruntled employees can be a huge security nightmare. There was just a case in Baltimore where a disgruntled employee installed a keylogger to steal his co-workers login info and programmed his bosses’s computer to replace a Powerpoint presentation with pornographic images-during a big meeting! It wasn’t until after that happened that the company decided they needed to put some security solutions in place. Kind of closing the barn door after the horses have escaped, don’t you think?

]]>