outside attackers over insiders

Subject: outside attackers over insiders
From: Gary Stoneburner <gary.stoneburner@nist.gov>
Date: Fri, 23 May 2003 08:37:19 -0400
Content-Type: multipart/alternative; boundary="=====================_345092937==.ALT"

re: http://www.crn.com/sections/BreakingNews/breakingnews.asp?ArticleID=42109

" Most IT security attacks against financial institutions come from external sources rather than company insiders, according to a new study by Deloitte & Touche. "

There are potential "issues" with the study so don't take it on face value, yet this is still an interesting result. Conventional wisdom (for example the problem is insiders) can remain even if the reasons for it go away :-)

Cheers,
Gary

************************************************************************** * Opinions expressed are not intended to reflect an official position ************************************************************************** * Gary Stoneburner
* Computer Security Division, National Institute of Standards & Technology
* 100 Bureau Drive, Stop 8930, Gaithersburg, MD 20877-8930
* Phone: 301-975-5394, FAX: 301-948-0279, Email: Stoneburner@nist.gov
* http://csrc.nist.gov/staff/stoneburner/gshome.html
**************************************************************************

Prev by Date: Russian cyber-crooks
Next by Date: Know Trojan is there, but can't find it
Prev by thread: Know Trojan is there, but can't find it
Next by thread: Russian cyber-crooks

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov