Cyber Defense eMagazine February Edition for 2022

More documents

Recommendations

Info

potential compliance violations and regulatory fines to a loss of customer trust. Data security must be a central focus for IT and security teams as we continue to see the impact of an uncertain labor market. Mid-career employees are resigning— and taking data with them Turnover trends have shifted since the start of the pandemic. Rather than early-career employees who dropped out of the workforce early on to pivot their careers or pursue passion projects, turnover rates are now highest among mid-career employees. These employees are likely to be very knowledgeable and experienced in their role. They’re looking for more flexibility, better benefits and salary, or a company mission that aligns with their values. What does this mean for security? Mid-career employees are more likely to have a detailed knowledge of an organization’s products, processes and customers. What’s more, they may have greater access to sensitive (and potentially lucrative) data. Data exfiltration is a widespread problem when employees leave a company. A Tessian report found that 45% of employees said they’ve “stolen” data before leaving or after being dismissed from a job. The Verizon Data Breach Investigations Report found that 72% of staff take some company data with them when they move on, although it isn’t always intentional. They also found that 70% of intellectual property theft occurs within the 90 days before an employee’s resignation announcement. Fortunately, there are signs that security teams can look out for to help spot and avoid data exfiltration. The key is to look for anomalous behavior; for example, major changes in email activity, an employee accessing documents or files at odd hours, or an increase in data transfers. Email is a popular method for these exfiltration attempts— employees will often email files or documents to a personal address— so securing this channel before a turnover surge is crucial. It’s also important for security and IT teams to be involved in the offboarding process to adjust data access privileges when someone resigns or changes their role. New staff are vulnerable to external security threats New employees who are hired to replace staffing gaps are often vulnerable to external threats like phishing and social engineering attacks. This is because they may not have met all their colleagues in person, while remote employees may be even less familiar with their colleagues and less able to verify a legitimate request. Malicious actors know this and will specifically target new employees in spear phishing and social engineering attacks. How do malicious actors know who has started a new job recently? All it takes is a quick search on social media. A report from Tessian found that 93% of U.S. employees post about a new job on social media Cyber Defense eMagazine – February 2022 Edition 94 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
sites like Facebook or LinkedIn. Cybercriminals use this information to develop targeted scams designed to trick new employees into sharing valuable data or login credentials, and even wiring money. According to the FBI, $26 billion has been lost to these kinds of business email compromise attacks since 2016. In one costly example, a scammer posed as the CEO to trick an employee into transferring $17.2 million to a Shanghai bank account as part of a fake deal to acquire another company. New employees in particular may not be familiar with their new CEO and what type of request is abnormal or suspicious, so it’s important to train them quickly and effectively. Comprehensive cybersecurity training should be part of the early onboarding process for all new employees to help avoid these data security risks. Training should be tailored specifically to the unique needs and risk factors of new and remote employees and delivered in real-time rather than at mandatory quarterly trainings. Basic security hygiene can also be effective at preventing data loss. New and existing employees should be consistently reminded of best practices and what to look for in a suspicious email. Data security and hiring challenges are intertwined No matter the issue — hiring new staff, addressing turnover, or preventing burnout among employees that stay in their roles — IT and security teams must be brought in so that data security impacts are foreseen and addressed. In these instances, securing the “human layer,” or the employees that handle a company’s most sensitive data, should be a priority. Securing important communications channels like email and establishing real-time, automated cybersecurity training for employees is an important part of the solution. Empower employees to work both productively and securely by making them part of the solution. Encourage them to report mistakes or suspicious activity to the IT and security team without fear of repercussions. When an employee resigns, make sure to walk through data security policies and set clear expectations to avoid inadvertent exfiltration. By building these processes into the full lifecycle of an employee’s experience, organizations can help prevent The Great Resignation from turning into a data security nightmare. Cyber Defense eMagazine – February 2022 Edition 95 Copyright © 2022, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
How Criminals Have Migrated Through
Page 3 and 4:
Combining True MDR & SOC for Robust
Page 5 and 6:
@CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8:
Cyber Defense eMagazine - February
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
How Criminals Have Migrated Through
Page 19 and 20:
Quite often the perpetrator claims
Page 21 and 22:
• Identity Access Management (IAM
Page 23 and 24:
About The Author Active with the IC
Page 25 and 26:
Given the rise in cyber-attacks, th
Page 27 and 28:
Why is that? Let’s take COVID-19
Page 29 and 30:
soon as possible and base it on str
Page 31 and 32:
How Do I Reliably Identify You If I
Page 33 and 34:
validation, what can be a very reli
Page 35 and 36:
How To Improve Federal Endpoint Det
Page 37 and 38:
What should agencies look for in a
Page 39 and 40:
Decision Trees in Case of a Ransomw
Page 41 and 42:
expertise’s recommended returning
Page 43 and 44: was sentenced to 12 years for payin
Page 45 and 46: Verify But Trust Managing insider t
Page 47 and 48: We now live in a world where the in
Page 49 and 50: 2. Cryptographic Failures - Cryptog
Page 51 and 52: Conclusion Penetration testing is a
Page 53 and 54: 1. Increase enterprise security pro
Page 55 and 56: minimise the impact on business per
Page 57 and 58: Today's Digital Battlefield Demands
Page 59 and 60: UAE can be a cyber security powerho
Page 61 and 62: Why Ransomware is Only a Symptom of
Page 63 and 64: Response vendor that can leverage a
Page 65 and 66: Critical IT infrastructure had to b
Page 67 and 68: Killware is the Next Big Cybersecur
Page 69 and 70: The most effective way to defend ag
Page 71 and 72: Combining True MDR & SOC for Robust
Page 73 and 74: especially those who want to build
Page 75 and 76: intelligence, data logs, and advanc
Page 77 and 78: But when it comes to cybercrime, a
Page 79 and 80: of in 2022. In effect, ransomware h
Page 81 and 82: Detect Ransomware Data Exfiltration
Page 83 and 84: Advanced SQL Behavioral Analysis fr
Page 85 and 86: In contrast, the corresponding reac
Page 87 and 88: of how PCs, laptops, and other Wind
Page 89 and 90: Cyber Insurance: What Executives Ne
Page 91 and 92: Keeping Premiums Low Once Coverage
Page 93: Data Security Must Be a Priority as
Page 97 and 98: Why Building Managers Need to Prior
Page 99 and 100: It should also provide the means fo
Page 101 and 102: Cyber Defense eMagazine - February
Page 123 and 124: CyberDefense.TV now has 200 hotseat
Page 125 and 126: Books by our Publisher: https://www
show all

Cyber Defense eMagazine February Edition for 2022

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?