« LogLogic Named 2008 Info Security Product's Guide Global Product Excellence Awards Finalist | Main | Log Collection Poll Results »
When "Traitor" lurks in "Administrator"
Last week, Tim Wilson, site editor of Dark Reading (www.darkreading.com) , wrote an article (http://www.darkreading.com/document.asp?doc_id=136399&WT.svl=news2_3) about rogue sys-admins. Wilson not only offers examples of angry system administrators purposefully tampering with vital, private corporate information, but also warns, "there have been numerous studies that illustrate, in some detail, that even non-disgruntled IT administrators frequently abuse their access privileges to access unauthorized files, emails, and even personnel records."
Wilson makes a good point here, one that we can't stress enough to customers: monitor your log data for unusual activity and keep an eye on what information your users are accessing, when they are accessing it, and from where they are accessing it. Though every enterprise security infrastructure MUST protect against the external "bad guys," don't forget to guard against those ostensibly trustworthy inside the company that have easy access to sensitive information.
Posted October 24, 2007 in | Permalink
TrackBack
TrackBack URL for this entry:
http://www.loglogic.com/mt/mt-tb.cgi/268
November 2007
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | ||||
| 4 | 5 | 6 | 7 | 8 | 9 | 10 |
| 11 | 12 | 13 | 14 | 15 | 16 | 17 |
| 18 | 19 | 20 | 21 | 22 | 23 | 24 |
| 25 | 26 | 27 | 28 | 29 | 30 |
Categories
Archives
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005