888.678.7282    Get SUPPORT

Strata Information Technology Blog

Your Network is at Threat from the Inside, Too

Your Network is at Threat from the Inside, Too

It’s no secret that a business’ security is one of its most important considerations. It would seem that there is a daily reminder of this unfortunate fact - but it’s even more unfortunate that many people aren’t aware of where many threats can actually come from. Below, we’ll discuss how some threats start on the inside - as well as what you can do to help stop them.

From the Inside?
Some may be surprised to learn that one of the biggest threats to your business technology is the group of people you’ve hired to work with it. There are a variety of reasons that your end-users can create a security problem through their actions.

Vengeance - As melodramatic as it sounds, if an employee is dissatisfied enough by something to do with their job, they might just lash out against the business. Whether that takes the shape of deleting critical files before storming off, unleashing malware into your system, or just breaking some critical component, your business could find itself in deep trouble. Even worse, if the employee thinks ahead about it, they could potentially figure out how to hide their actions until they are long gone, or just access your network later to mess with your business - and the longer an issue persists, the more it will ultimately cost you.

The best way to fix this is to simply remove an employee’s credentials the moment they are no longer in your employ - and to mitigate this kind of situation from happening in the first place. If you keep your employees satisfied, engaged in their work, and happy, if they do ultimately leave, it will most likely be a departure spurred by greener pastures elsewhere, and not animosity toward your business. Being Bamboozled - How many of your employees read these blogs, or have gone over our website? Are they up-to-speed on how to best protect themselves against social engineering attacks by cybercriminals? These attacks can be particularly effective, as they take an employee’s instinct to do as they are told and pit it against their ability to shrewdly analyze an incoming message.

A social engineer will reach out to your employee under the guise of being someone else, as either an authority figure in your company, a client, or another business contact. This allows them to request certain information that some employees would be only too eager to hand over (after all, if the boss is asking for something, you deliver it, right?). The simplest way to eliminate this threat is to make sure your employees appreciate the reality of it, educating them and reinforcing the proper procedures to ensure that information isn’t just given out to someone who asks nicely.

Inappropriate/Illegal Activities - Unfortunately, a workstation is not just a great productivity tool. It is also one of the most potent distractions out there, thanks to all the content available online that should not be accessed by someone in a professional environment. From games, to adult material, to social media, to watching x-animal try to mimic y-human activity on YouTube, you are up against a formidable foe if you try to wrangle the Internet. However, it is crucial to your network security that you do so, as threats can be very easily hidden in content that would seem harmless on the surface. Protecting yourself against these threats means that you have to apply patches as they become available, and it can’t hurt to block access to certain websites if you discover that there is a tendency for them to be accessed during work hours.

Of course, there’s inappropriate, and then there’s illegal. Unfortunately, unless you can establish that you have taken measures to prevent such activities, any illegal activities performed on a business’ network are the responsibility of the owner. Citibank learned this the hard way, when its employees downloaded materials from the Internet that had absolutely no business being accessed in the workplace. This activity got Citibank sued for $2 million. This is why it is especially important to monitor your network activity, and again, block access to certain sites. You should also keep a documented acceptable use policy, signed by every employee, so that you can legally protect yourself should the need arise.

Leaking Information - There are a variety of reasons that an employee could want to take information out of the safe environment of your network. Those with good intentions may just want to get some extra work done at home - but we’ve all heard where the road paved with good intentions leads to. A frustrated employee might decide to take a little something along when they leave to entice their next employer into hiring them.

Either way, your data is at risk, so you need to take steps to prevent such activities. A few options are to require permissions for certain devices to access the network, and to require authorization to connect a device to Wi-Fi or Bluetooth within the office.

As unfortunate as internal threats inherently are, you need to accept that they are real in order to deal with them. Strata Information Technology can help. Reach out to us at 888.678.7282 to learn about our solutions to your security concerns, inside and out.

Smartphones Are at the Center of the Internet of T...
Tip of the Week: How to Manage Your Network Profil...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Wednesday, January 16 2019
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Business Computing Best Practices Managed IT Services Privacy Cloud Network Security Internet Malware Cybersecurity Hackers User Tips Backup Communications Ransomware Tech Term Business Management VoIP Microsoft Outsourced IT Software Productivity IT Support Alert Smartphones Efficiency Passwords Productivity IT Services Social Media Business Windows 10 Hardware Google Network Email Data Communication Data Backup Small Business Data Recovery Browser Phishing Holiday Save Money Hosted Solutions Microsoft Office Cloud Computing Mobile Device Smartphone Users Miscellaneous Vulnerability Saving Money Data Breach Android Collaboration App Bandwidth Access Control Twitter Apps Internet of Things Business Continuity Workplace Tips Blockchain Settings Wireless Employer-Employee Relationship Workers Remote Monitoring Scam Mobile Device Management Wi-Fi Cybercrime Excel Company Culture Government Computer Networking Compliance Politics BDR Law Enforcement Applications Office 365 Patch Management Innovation Recovery Maintenance Password Education Spam Retail Managed IT Service Office Computers Dark Web Vendor Management Personal Information BYOD Mobile Devices Remote Monitoring and Management Chrome Virus Automation Word SaaS Managing Stress Virtual Assistant Information How To Windows Marketing Connectivity Antivirus Entertainment Website Facebook Business Intelligence Streaming Media Mobility Live Streaming Hiring/Firing Employer Employee Relationship Microsoft Office 365 Tablet Botnet VPN Files Cleaning Upgrade Printers Technology Tips Medical IT Hybrid Cloud Telephone Systems Data Protection Profitability Gmail Encryption Leadership Access Staff Proactive IT RAM Remote Support Hard Drive Battery Data Management Current Events Document Management Shortcut Database VoIPSavings Downloads Training WhatsApp Wireless Charging Automobile Authentication Knowledge Eliminating Downtime Computer Care Backup and Disaster Recovery GDPR Cables Remote Control Synergy Websites Microsoft Teams Processors Yahoo Net Neutrality Paperless Office CrashOverride Tactics Update Disaster Recovery Artificial Intelligence Trends Security Cameras Lead Generation Two-factor Authentication e-waste Authorization Comparison IT budget PowerPoint Wireless Internet Emergency Telephony Hard Drives Gaming Console SSD Storage Voice over Internet Protocol Analytics Apple DDoS Digital Internet Explorer Technology Efficiently Multi-Factor Security Specifications A.I. News Scalability Tech Support Phone System disposal Safety IT Management Sports Help Desk Licensing Voice over IP Avoiding Downtime Video Games Google Maps Inventory Error Email Management Dark Data IaaS The Internet of Things Dongle Regulation iPhone Worker Edge Threat Outlook Television Information Technology Movies Telephone System WannaCry Cortana Gadgets Credit Cards Budget Spyware Value Troubleshooting Smart Technology Tech Terms Certification Travel Staffing Touchscreen Amazon Sales Unified Threat Management Physical Security Managed Service Provider Cost Management HaaS Printer Server Reporting Bring Your Own Device WiFi Printer Managed Service Router Content Filtering Managed IT Biometrics Data loss Plug-In HIPAA HP Gadget VoIPMyths Network Attached Storage Online Shopping Customer Service Managed IT Services Operating System Millennials Mobile Office Paper Fun Domains Server Management Environment Google Drive Ink IT Support File Sharing User Tip Public Speaking Autocorrect Presentation Virtualization Lithium-ion battery Hosted Solution Spam Blocking User Security Tip of the week Search Scheduling Augmented Reality Wireless Technology 5G Machine Learning Wearables Server Quick Tips Copy IBM Business Technology Emoji Remote Computing Instagram G Suite Hacker Windows 10 Conferencing Money Telecommute Healthcare Samsung VoIP Competition Paste eCommerce Customer Relationship Management Mobile Security Telecommuting Big Data IP Address Laptop Printing Unified Communications

Newsletter Sign Up