By Ericka Chickowski Posted on 10/13/2014
AT&T insider attack case highlights the need for strong privileged identity management practices.
While much ado has been made in 2014 of mega breaches coming at the hands of external hackers, the truth is that insider attacks are still top of mind for security practitioners today. In fact, a report out just recently from PwCshows that malicious activity from current and former employees is the most cited risk for cyber security to contend with, above the actions of organized criminals, nation-states, or any other outside attacker. Not long after that report, the industry got a stark reminder of why it's such a concern, with news breaking that an employee at AT&T managed to tap into a customer database and access sensitive information for approximately 1,600 telco subscribers.
The breach highlights once again the importance of privileged identity management and identity-aware monitoring to make sure that employees only have access to the data they need to get their jobs done and that they don't abuse their privileges to access that data to compromise customer records.
DarkReading/ Article/ http://www.darkreading.com/4-id-management-tips-for-better-breach-resistance/d/d-id/1316576?
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.