The insider threat on steroids? Brian Krebs reports: Wired reported this week that a 19-year-old working for Elon Musk‘s so-called Department of Government Efficiency (DOGE) was given access to sensitive US government systems even though his past association with cybercrime communities should have precluded him from gaining the necessary security clearances to do so. As today’s story explores, the…
Category: Insider
Maybe we should all file breach reports against Musk like Kevin did. (1)
The Washington Post reports: Agents of billionaire Elon Musk’s Department of Government Efficiency have gained access to highly restricted government records on millions of federal employees — including Treasury and State Department officials in sensitive security positions — as part of a broader effort to wrest control over the government’s main personnel agency, according to…
US Justice Department drops case against Texas doctor charged with leaking transgender care data
Prosecutors may have dropped the case against Dr. Eithan Haim, but his conduct is a reminder of the insider threat. AP reports: Federal prosecutors on Friday dropped the case against a Texas doctor who called himself a whistleblower on transgender care for minors and was accused of illegally obtaining private information on patients who weren’t under his care. The…
Orlando Man Pleads Guilty To Conducting Series Of Cyber Intrusions Against Former Employer
Orlando, Florida – United States Attorney Roger B. Handberg announces that Michael Scheuer (39, Orlando) today pleaded guilty to one count of knowingly transmitting a program, code, or command to a protected computer and intentionally causing damage without authorization and one count of aggravated identity theft. Scheuer faces a maximum penalty of 10 years in federal prison…
Research Report: The Insider Threat Digital Recruitment Marketplace
An interesting report by Nisos looks at those selling or advertising insider access and those recruiting insiders at firms. From the report: Executive Summary Nisos routinely monitors mainstream and alternative social media platforms, as well as cloud-based messaging applications and dark web forums to identify individuals and networks advertising insider access or recruiting insiders at…
Insider Threats: The Overlooked Risks of Departing Employees and Sensitive Data Theft
Joe Lazzarotti of JacksonLewis has a post on one of my favorite topics: insider threats. Insider threats continue to present a significant challenge for organizations of all sizes. One particularly concerning scenario involves employees who leave an organization and impermissibly take or download sensitive company data. These situations can severely impact a business, especially when…