ITMG Insider Threat News – March 23, 2022

MITRE and Partners Build Insider Threat Knowledge Base

Is the time right for a unified lexicon of known tactics, techniques and procedures (TTP) used by insiders who opt to break trust with their employers? MITRE thinks so and has positioned itself to serve as the locus for insider threat knowledge.

In mid-February, MITRE Engenuity’s Center for Threat Informed Defense, supported by a phalanx of multi-sector powerhouses including Citigroup Technology, Microsoft, Crowdstrike, Verizon, and JP Morgan Chase, published their Design Principles and Methodology for the Insider Threat TTP Knowledge Base.

Most NASA Systems at Risk from Insider Threats: Audit

A report from NASA’s Office of Inspector General (OIG) reveals that, while the agency has efficiently implemented an insider threat program that covers classified systems, most of the agency’s systems are unclassified, thus potentially exposed.

As part of its fully operational insider threat program, NASA monitors the classified network for anomalous user activity, it conducts mandatory threat training and it has established a website to help employees and contractors identify potential threats, and it has strengthened procurement controls.

Leading Laboratory Interrupts Insider Threat Using Darktrace Artificial Intelligence

Darktrace, a global leader in cyber security AI, today announced that a leading laboratory specializing in in vitro diagnostics successfully stopped an insider threat with the help of Darktrace’s self-learning AI.

The company, which has laboratories, offices and distribution centres in over 100 countries worldwide and more than 3000 employees, specializes in the research, development and manufacturing of innovative in vitro diagnostic tests for disease, conditions and infections. The organization uses Darktrace’s detect, respond and investigate capabilities to defend against in-progress attacks at the early-stages.

Colorado Democrats Introduce Bill to Strengthen Election Security Against ‘Insider Threats’

Colorado Democrats want to strengthen the state’s physical election equipment security, expand the election official certification process and increase penalties for tampering with voting systems — all in the name of combating insider threats.

“As misinformation and conspiracy theories, unfortunately, increasingly seep into our elections, we must take quick action to ensure our elections will always remain free, fair and secure,” Senate President Stephen Fenberg, a Democrat from Boulder, said during a Monday press conference.

Editorial: It’s No Secret the Public can get Stung by Trade Secrets

Some residents of The Dalles and some journalists wanted to know how much water Google would be using. City officials argued the amount of water the expansion will take is sustainable for its aquifer. But people have different ideas about what is sustainable. And members of the public can’t really judge how good a deal is unless they know how much water the data centers will be drinking.

Google argued that information is a trade secret. The Dalles sued The Oregonian to keep the information secret. And so far, that is the way the issue remains.

Cloud-Based Email Threats Surge 50% in 2021

There was a 50% year-on-year surge in cloud-based email threats in 2021, but a drop in ransomware and business email compromise (BEC) detections as attacks became more targeted, according to Trend Micro.

It revealed that Trend Micro blocked 25.7 million email threats targeting Google Workspace and Microsoft 365 users last year, versus 16.7 million in 2020.

Discover more from ITMG

Subscribe now to keep reading and get access to the full archive.

Continue reading