An Ounce of Prevention Against Insider Attacks - Andre Yee's Security Insider - ebizQ

February 10, 2008 Sign In | About ebizQ | Contact Us | Join ebizQ Gold Club

Andre Yee's Security Insider
An open dialogue about security and compliance for the enterprise.

« Insider Attacks - Who's Behind the Curtain? | Main | Spam - The Four Letter Word Everyone Hates »

February 13, 2007
An Ounce of Prevention Against Insider Attacks

My last post on insider attacks mentioned the importance on knowing who you're hiring for that oh-so-important IT admin position. Here's a Dec 2006, Information Week article - The Case for Background Checks essentially making the the same point.

Roger Duriono, was hired by UBS PaineWebber in 1999 without a background check which would have uncovered a police record. Instead, Duriono ended up committing computer sabotage by releasing a logic bomb which crashed a couple thousand corporate servers and temporarily interrupted trading for thousands of brokers. The financial loss wasn't detailed in the article but needless to say, the loss of trading business was far more than the cost of fixing the technical problem.

The lessons here are simple. When it comes to security, an ounce of prevention is worth a pound of cure. Background checks and character references matter. To the point I made in the last post, hire for technical expertise but if you think integrity or character isn't important....think again. I bet UBS wished they did.

Posted by andreyee in Insider Attacks |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/1353

Comments Post a comment

Most Recent ebizQ Blog Entries

ADVERTISEMENT

RSS Subscription

Recent Posts

Privacy Problems with Social Networks
Implications of Salesforce Phishing Incident
Electronic Jihad?
Top 10 Most Vulnerable Apps for 2007
Adobe Fixes Vulnerability But Problems Persist in the Wild
Ann Coulter Hacked
Social Networking Versus Corporate Security
How Web 2.0 is Challenging Corporate Security
Identity Data Leaked from Mortgage Company
Is the iPhone Secure Enough For You?

Categories

Alerts/Warnings
Compliance
Industry Trends
Insider Attacks
IPS/Firewall Technology
M&A
Network Security
Odds and Ends
Privacy/Information Theft
Product Announcements
Spam & Spyware
web 2.0
web services security
Wireless Security

Archives

December 2007
November 2007
October 2007
September 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006

Blog Roll

This Work

Accountability:The opinions expressed in this blog are solely representative of the blog's author, and not of ebizQ

Disclaimer:The opinions expressed in this blog are solely representative of the blog's author, and not of ebizQ.

free hit counter script

Subscribe to our Newsletters
ebizQ Weekly Gold Club Update Live Webinar Updates Updates from ebizQ Partners ebizQ SOA Update ebizQ BPM Update ebizQ Security Update ebizQ BI Update ebizQ Open Source Software Update Virtual Show Newsletter
Your E-mail Address:

BAM: The Killer App for CEP
Date: Feb 12, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND

Event Processing Market Pulse
Date: Feb 14, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND

Archived Webinars | Upcoming Webinars

Marketing Solutions | Feedback | About ebizQ | Unsubscribe | Privacy Policy | Site Map