November 06, 2018 - Carlos Rodrigues - Computer World
We are used to hearing about insider trading when we talk about who uses inside information to trade stocks. But there is another facet of this problem, better known as “insider threats,” which is also the use of inside information - in this case to steal data and sell it for Dark web.
In the Defend Your Data as Monetize their Access Insiders report, Forrester explains how financial company employees trade this high-value data or credentials with cybercriminals. Generally, forums are created for both sides to relate to, either for the employee making their offer or for hackers trying to recruit people for dirty work within organizations.
Of course, this problem is not unique to the financial sector. All companies may have dissatisfied employees who are seeking revenge or simply need easy money. Experian's survey found that a debit card can be sold on the Dark Web for values ranging from US$ 5 to US$ 110 and that medical records can reach prices ten times higher, depending on how they are structured. Even selfies are sold to forge passports and open accounts in fintechs.
In 2017 and again in early 2018, Netshoes was allegedly the victim of leaks. In both attacks, about 1.5 million customer data were stolen from the company and released to the press, believed to be due to phishing scams or vulnerabilities in the platform used.
As Brazilian companies are not - at least not yet - obliged to disclose these leaks, it is hardly known which breaches or scams were the victims. Another recent attack, this one against Boa Vista SCPC, may have leaked more than 300,000 different data, including CPF, checking accounts, financial backlogs and credit score of thousands of people & #8211; The institution denies any leakage. Thus, hackers even sell a data query to end a bank or credit card fraud for about R$ 15, paid in bitcoin.
Accidents happen but can be prevented
If many of the large-scale attacks we have seen in the media lately - Yahoo, Equifax - are breaches caused by cyber criminals, country-sponsored entities or hackers, we need to keep an eye on this other security threat within companies: “accidents” that can compromise data.
Not every internal threat is the result of a malicious employee. There are also those who inadvertently fall into phishing scams or access compromised websites and accidentally expose company data. These flaws also include cases where employees or contractors share their login credentials, use free services to store files, or copy those files to personal devices. These are cases that, at a minimum, show that the company's security policy is not being followed.
Given this scenario, companies that are granting unnecessary permissions, do not have a system to control access to sensitive data, do not invest in training and disclosure of security policy, or are not aware of possible behavioral indicators of suspicious activity, are in danger.
About [SAFEWAY]
THE [SAFEWAY] is a widely recognized company as a provider of premium information security and cybersecurity solutions. From its extensive portfolio, we highlight several solutions, including those based on platforms:
- Archer da RSA Security, considered by the institutes Gartnerand Forrester and by the market itself, the most complete process integration solution for Governance, Risk Management, Compliance and Business Continuity Management;
- [SAFEWAY]Security Tower, supported by IBM Qradar (Watson technology), tailored to each organization in its security and cyber defense management needs.
- And others, involving technologies Imperva, Thales, BeyondTrust, Manly, WatchGuard Technologies
