Security Threats Hiding In Plain Sight - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
IT Leadership // Security & Risk Strategy
News
6/3/2016
07:06 AM
Thomas Claburn
Thomas Claburn
Slideshows
Connect Directly
LinkedIn
Twitter
RSS
E-Mail

Security Threats Hiding In Plain Sight

IT professionals would rather manage external threats than worry about insiders, a recent survey by Soha finds. But singular focus when it comes to security can end up being a costly mistake.
2 of 6

It's Very Important 
American Express in March sent out a letter warning cardholders that their account information may have been compromised through a third-party merchant's systems. Like data breach notices, the letter said, 'Protecting the security of our Card Members' information is very important to us...' If you've ever sat on hold while an automated system assured you that 'Your call is very important to us,' you probably understand that the word 'important' serves as a poor apology. 
(Image: Republica via Pixabay)

It's Very Important

American Express in March sent out a letter warning cardholders that their account information may have been compromised through a third-party merchant's systems. Like data breach notices, the letter said, "Protecting the security of our Card Members’ information is very important to us..." If you've ever sat on hold while an automated system assured you that "Your call is very important to us," you probably understand that the word "important" serves as a poor apology.

(Image: Republica via Pixabay)

2 of 6
Comment  | 
Print  | 
Comments
Threaded  |  Newest First  |  Oldest First
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Author
6/5/2016 | 12:01:46 PM
Treat them all as insiders.
Protecting against insider threats is arguably even more important -- since most external attacks ultimately rely on gaining some form of insider access.
Susan Fourtané
50%
50%
Susan Fourtané,
User Rank: Author
7/28/2016 | 9:39:52 AM
Re: On Another Note.....
Technorati, 

I don't think it's employees who don't take security measures seriously. It's more a lack of information about those security measures. This is why it's so important for enterprises to always have in-company training on security. how many times we have heard about employees who innocently have made a terrible mistake? Of course, there is also a percentage of people who are simply careless no matter what. 

-Susan 

 
Susan Fourtané
50%
50%
Susan Fourtané,
User Rank: Author
7/30/2016 | 12:56:04 PM
Re: On Another Note.....
Technorati, 

Prevention and education are two great tools everyone should consider in order to avoid security problems as much as possible. It's important to always be vigilant. In-house training is one option.

Another option is encouraging employees to attend security conferences to stay updated, listen to the experts, and have security always present. Everyone in the company needs to be involved. 

-Susan 

 
Susan Fourtané
50%
50%
Susan Fourtané,
User Rank: Author
7/30/2016 | 3:05:50 PM
Re: On Another Note.....
Technorati, 

Yes. At the same time you wonder if it's not stating the obvious. If it would, we wouldn't be having these discussions, though. 

-Susan 
InformationWeek Is Getting an Upgrade!

Find out more about our plans to improve the look, functionality, and performance of the InformationWeek site in the coming months.

News
Remote Work Tops SF, NYC for Most High-Paying Job Openings
Jessica Davis, Senior Editor, Enterprise Apps,  7/20/2021
Slideshows
Blockchain Gets Real Across Industries
Lisa Morgan, Freelance Writer,  7/22/2021
Commentary
Seeking a Competitive Edge vs. Chasing Savings in the Cloud
Joao-Pierre S. Ruth, Senior Writer,  7/19/2021
White Papers
Register for InformationWeek Newsletters
Video
Current Issue
Monitoring Critical Cloud Workloads Report
In this report, our experts will discuss how to advance your ability to monitor critical workloads as they move about the various cloud platforms in your company.
Slideshows
Flash Poll