Companies should watch for insider cyber crime

Companies should watch for insider cyber crime

While companies can do everything they can to protect information traveling across the internet with tools like code signing digital certificates, abiding by PCI compliance and equipping themselves with Thawte SSL certificates, insider threats are something that some may not account for. An InfoWorld report titled Insider Threat Deep Dive said companies should look to thwart insiders looking to get a leg up on the company.

"The most common crime? Copying or uploading proprietary data, either on the way out of the door to another job or to send to an outside party for direct financial compensation," according to the report. "Rogue employees can profit and extract revenge in one swoop by selling valuable data and source code to an employer’s competitors. Or in this age of zero-capital startups, they can use customer lists to go into business for themselves."

A big thing a company can do is set up a system in which these insider threats can be detected. The Verizon Data Breach Investigations Report said 86 percent of insider threats were discovered by third parties instead of victims, so a big key is to better define what is acceptable and legitimate as far as activity in the company's computer system goes. This way, if anything goes wrong, the company should be able to detect what happened right away and hold the responsible party accountable.

The InfoWorld report said companies should look for unusual network traffic and host resource patterns, record data access and review event logs to make sure everything is running as it normally does.

While making sure insider threats are secure, companies should make sure to have Symantec SSL certificates in place to make sure clients and customers who deal with the company online stay safe as well. Online security should be done as holistically as possible.