| Register here to receive a free, 60-day license for AD360
Accidental insider threats, more than other threats, were the major concern for 54 percent of the IT leaders surveyed, revealed the 15th annual Global Encryption Trends Study. Even more alarming, a study by Egress found that 59 percent of the IT leaders surveyed said they rely on employee reporting to uncover breaches caused by accidental insider threats. With the pandemic forcing companies to rush the switch to teleworking, security teams are likely to witness a surge in unintended but business-crippling insider threats.
Accidental insider threats are often the result of employee negligence. The pandemic has only heightened their inattention. With people looking for ways to protect themselves, they are more likely to click on phishing emails claiming to provide information about COVID-19. Since many employees are connecting from home, the organization’s confidential data is also at risk. All these actions create entry points for attackers.
COVID-19-themed phishing emails masquerading to be from government organizations such as the US Centers for Disease Control and Prevention (CDC) and the World Health Organization (WHO) are on the rise. Trusted trademarks, like FedEx, are also being spoofed.
Most email scams asked victims to open documents or download attachments. When they did, their devices were infected with malware such as LokiBot, Agent Tesla Keylogger, or AZORult. All of these siphon sensitive user information from the victim’s device. In other cases, victims were redirected to malicious domains acting as decoys to trustworthy ones.
Now more than ever, it’s crucial to analyze your user’s behavior. Traditional security information and event management (SIEM) solutions that trigger rule-based alerts can’t analyze user behavior. Further, SIEM solutions don’t scale well when the IT perimeter expands beyond the compounds of the organization, according to the 2018 Global Security Trends in the Cloud report.
Complementing your SIEM solution with a tool like AD360, a comprehensive identity and access management (IAM) solution, that offers real-time change auditing and user behavior analytics (UBA) will help you swiftly identify and mitigate data exfiltration attempts and new processes that spring up in your servers.
To help strengthen your defense against the looming accidental insider threats and ensure a seamless remote working experience for your employees, we’re offering AD360 for free.
About AD360: AD360 is a full-fledged IAM solution that helps you manage user identities, govern user access, enforce security, and ensure compliance.