Insider Threat Incidents: Assets Targeted by Malicious Insiders
As part of the CERT National Insider Threat Center’s ongoing efforts to refine and improve...
Read More
Category: CERT Insider Threats
Highlights from the 7th Annual National Insider Threat Center (NITC) Symposium, Day One
This post was co-authored by Sarah Miller. This year’s seventh annual National Insider Threat Symposium, “From Mitigating Insider Threats to Managing Insider Risk,” focuses on proactive approaches to reducing...
Read MoreInsider Threat Incidents: Communication Channels
This post was co-authored by Alex Pickering. The CERT National Insider Threat Center collects, categorizes, and analyzes technical insider incidents–those in which the insider used technology–to monitor the evolving...
Read MoreInsider Threat Incidents: Most Commonly Affected Devices
This post was co-authored by Alex Pickering.At the CERT National Insider Threat Center, we collect, analyze, and categorize insider incidents to populate our CERT Insider Threat Incident Corpus and monitor the evolving insider...
Read MoreOrganizational Resilience to Insider Threats
This September is the federal government’s second annual insider threat awareness month, and this year’s theme is resilience. The SEI has a significant body of research in resilience, and in the CERT National Insider...
Read MoreFunctional Requirements for Insider Threat Tool Testing
Derrick Spooner co-authored this post. Because of the scope and scale of the insider threat, the SEI recommends that organizations adopt a use-case-based approach to insider risk mitigation. In such an approach, organizations...
Read MoreMaturing Your Insider Threat Program into an Insider Risk Management Program
Having trouble clearly stating the scope of your insider threat program? Struggling with measuring the program’s effectiveness? Failing to provide actionable intelligence to the program stakeholders? Lacking consensus...
Read MoreAnti-Phishing Training: Is It Working? Is It Worth It?
Phishing attacks target human, rather than technical, vulnerabilities. Some organizations, companies, government agencies, educational institutions, and individuals put on blinders and hope it doesn’t happen to them....
Read MoreTechnology Trends in Data Exfiltration
One of our goals at the CERT National Insider Threat Center (NITC) is to monitor the shifting landscape of insider threat to identify tools and techniques insiders may use to harm to their organization. Our expanding repository...
Read MoreMeasuring Resilience in Artificial Intelligence and Machine Learning Systems
Shing-Hon Lau co-authored this post. Artificial intelligence (AI) and machine learning (ML) systems are quickly becoming integrated into a wide array of business and military operational environments. Organizations should ensure...
Read MoreMapping Cyber Hygiene to the NIST Cybersecurity Framework
In honor of Cybersecurity Awareness Month, I decided to put fingers to keys and share some basic practices that every organization should consider for their cyber hygiene initiatives. This blog post will describe a process to...
Read MoreManaging the Risks of Ransomware
This blog post was co-authored by Jason Fricke. Ransomware poses a growing threat to both businesses and government agencies. Though no strategy can fully eliminate these risks, this post provides recommendations, and links to...
Read More