More than ever, insider threats remain among the most challenging attacks to detect and the most damaging to mitigate. Threats from individuals with authorized access are a critical focus of the CMMC, particularly at Levels 2 and 3, which mandate strong controls to combat social engineering and threats from employees or other internal stakeholders. This… Read More
Insider threats are a massive problem due in no small part to the prevalence of apps, accounts, and systems that employees have to plug into daily. Once you’ve let an employee go, there’s no accounting for how they can steal data using their old credentials… unless you have a proper offboarding plan. Here, we discuss… Read More
Risk management is a term bandied about by a lot of experts. It’s critically important, of course, but it is also a catch-all for security terms that may not seem to apply directly to immediate, regulatory security. So, when insider threats come up, it becomes challenging to parse out how security and risk help address… Read More