nach oben

Erschienen in:

2021 | OriginalPaper | Buchkapitel

Protect Against Unintentional Insider Threats: The Risk of an Employee’s Cyber Misconduct on a Social Media Site

verfasst von : Guerrino Mazzarolo, Juan Carlos Fernández Casas, Anca Delia Jurcut, Nhien-An Le-Khac

Erschienen in: Cybercrime in Context

Verlag: Springer International Publishing

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

Social media is a cybersecurity risk for every business. What do people share on the Internet? Almost everything about oneself is shared: friendship, demographics, family, activities and work-related information. This could become a potential risk in every business if the organisation’s policies, training and technology fail to properly address these issues. In many cases, it is the employees’ behaviour that can put key company information at danger. Social media has turned into a reconnaissance tool for malicious actors and users accounts are now seen as a goldmine for cyber criminals. Investigation of social media is in the embryonic stage and thus is not yet well understood. This research project aims to collect and analyse open-source data from LinkedIn, discover data leakage and analyse personality types through software as a service (SAAS). The final aim of the study is to understand if there are behavioural factors that can predict one’s attitude towards disclosing sensitive data.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Shifting the Blame? Investigation of User Compliance with Digital Payment Regulations

Nächstes Kapitel Assessing the Detrimental Impact of Cyber-Victimization on Self-Perceived Community Safety

In the counter-intelligence (CI) field, the acronym MICE (Money, Ideology, Coercion/Commitment and Ego) has been fully accepted by the CI community for decades as the main ‘motivational and emotional aspects’ for the act of disclosing information. Those four factors obviously implied some kind of weakness or vulnerability. Sometimes, a mix of two or three of these factors also are decisive as motivation. Nowadays, an alternative framework is being discussed and accepted by some CI experts. It is the path from MICE to RASCLS, the acronym for reciprocation, authority, scarcity, commitment (and consistency), liking and social proof. According to the former CIA National Clandestine Service (NCS) officer Randy Burkett, today’s CI departments often deal with non-state actors with complex mixtures of competing loyalties, including family, tribe, religion, ethnicity and nationalism (Burkett, 2013).

Edward Snowden (1983) is an American citizen, a former Central Intelligence Agency (CIA) employee and subcontractor (Booz Allen Hamilton Co.) who leaked top-secret information from the National Security Agency (NSA) in 2013. Snowden gradually became disillusioned with the NSA global surveillance programs he was involved since he considered they were a clear intrusion into people’s private lives. Although he tried to raise his ethical concerns through internal channels, nobody paid enough attention to the warnings that Snowden could become (was becoming) an ‘insider threat’. Edward Snowden could be considered as an example of ‘insider threat’ with an ethical commitment. According to Snowden, he considers himself a whistle-blower despite a leaker since he did not leak the intel for ‘personal profit’.

Chelsea Manning (1987) born as male Bradley Manning, she got female gender identity in 2013. She was a former US Army soldier working as intelligence analyst posted in Iraq in 2009. She leaked sensitive US intel (up to 750,000 documents) to WikiLeaks. She was imprisoned from 2010 until 2017 when her sentence was commuted. According to several military psychiatrists that assessed Manning’s personality and psychology during the trial, Manning had been isolated in the Army while dealing with her gender identity dichotomy. The specialists considered that Manning had the perception that her leaks were positively changing the world. Chelsea Manning could be considered as an ‘insider threat’ under the parameters of psychological imbalance (gender dichotomy and ego) combined with an ethical commitment for a better world.

Robert Hanssen (1944) is a former Federal Bureau of Investigation (FBI) senior intelligence officer who spied for the Soviet Main Intelligence Directorate (GRU) from 1979 to 2001. Hanssen sold thousands of classified documents to the KGB for more than $1.4 million in cash and diamonds. The intel provided by Hanssen to the Russians detailed US strategies in nuclear war, military weapons technologies and counter-intelligence. He is currently serving 15 consecutive life sentences. According to the US Department of Justice, Hanssen’s acts of espionage could be considered ‘possibly the worst intelligence disaster in US history’. Robert Hanssen is a clear example of ‘insider threat’ with a profit motivation (money).

Aaltola, M. (2019). Geostrategically motivated co-option of social media. Retrieved from https://www.fiia.fi/wp-content/uploads/2019/06/bp267_geostrategically_motivated_co-option_of_social-media.pdf67_geostrategically_motivated_co-option_of_social-media.pdf&usg=AOvVaw0ACCbu_3czY2_ORvF3pUWp

Asokan, A. (2020). How machine learning can strengthen insider threat detection. Retrieved from https://www.bankinfosecurity.com/how-machine-learning-strengthen-insider-threat-detection-a-13790

Borwell, J., Jansen, J., & Stol W. (2018). Human factors leading to online fraud victimisation: Literature review and exploring the role of personality traits. Retrieved from: https://www.researchgate.net/publication/325195147_Human_factors_leading_to_online_fraud_victimisation_Literature_review_and_exploring_the_role_of_personality_traits

Burkett, R. (2013). An alternative framework for agent recruitment: From MICE to RASCLS. Studies in Intelligence, 57(1), 7–17.

Cappelli, D. M., Moore, A. P., & Trzeciak, R. F. (2012). The CERT guide to insider threats.

Caputo D. (2012). Applying behavioral science to the challenges of cybersecurity. Retrieved from https://www.mitre.org/careers/working-at-mitre/employee-voices/applying-behavioral-science-to-the-challenges-of-cybersecurity

Carnegie Mellon University. (2013). Unintentional insider threats: A foundational study. Pittsburgh, PA: Carnegie Mellon University.

Carnegie Mellon University. (2020). Insider threats in the time of COVID-19. Pittsburgh, PA: Carnegie Mellon University. Retrieved from https://www.sei.cmu.edu/news-events/news/article.cfm?assetId=638958

Carter N. T., Guan L., Maples J. L., Williamson R. L., & Miller J. D. (2015). The downsides of extreme conscientiousness for psychological well-being: The role of obsessive compulsive tendencies. Retrieved from: https://www.researchgate.net/publication/274723683_The_Downsides_of_Extreme_Conscientiousness_for_Psychological_Well-being_The_Role_of_Obsessive_Compulsive_Tendencies

CERT, SEI. (2013). Unintentional Insider Threats: A Foundational Study (CMU/SEI-2013-TN-022). Retrieved from http://resources.sei.cmu.edu/library/asset-view.cfm?assetid=58744

CERT, SEI. (2016). The critical role of positive incentives for reducing insider threats. Retrieved from https://resources.sei.cmu.edu/asset_files/TechnicalReport/2016_005_001_484929.pdf

CERT, SEI. (2018). Common sense guide to mitigating insider threats (6th ed.; pp 5–6). Retrieved from https://resources.sei.cmu.edu/asset_files/TechnicalReport/2019_005_001_540647.pdf

Chauhan, S., & Panda, N. K. (2015). Hacking web intelligence: Open source intelligence and web reconnaissance concepts and techniques (p. 101). Waltham, MA: Syngress.CrossRef

Chen X., Pan Y., & Guo B. (2016). The influence of personality traits and social networks on the self-disclosure behavior of social network site users. Retrieved from https://www.researchgate.net/publication/303316556_The_influence_of_personality_traits_and_social_networks_on_the_self-disclosure_behavior_of_social_network_site_users

Cherry, K. (2019). What is personality and why does it matter? Retrieved from https://www.verywellmind.com/what-is-personality-2795416

Cimpanu, C. (2019). FBI warning: Foreign spies using social media to target government contractors. Retrieved from https://www.zdnet.com/article/fbi-warning-foreign-spies-using-social-media-to-target-government-contractors/

Cross, M. (2014). Social media security. Leveraging social networking while mitigating risk. Waltham, MA: Syngress Publishing, Inc..

D’Agostino, D., & Skloot, G. (2019). Predicting personality: Using AI to understand people and win more business. Hoboken, NJ: John Wiley & Sons.

Elifoglu, I. H., Abel, I, & Tasseven, O. (2018). Minimizing insider threat risk with behavioral monitoring. Retrieve from https://www.stjohns.edu/sites/default/files/uploads/review-of-business-382-june_2018.pdf

Friedlander, G. (2016). How to change user behavior and reduce risk by over 50%. Retrieved from https://ciotechworld.com/how-to-change-user-behavior-and-reduce-risk-by-over-50/

Gamachchi, A., & Boztas, S. (2017). Insider threat detection through attributed graph clustering. 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications

Goldberg, L. R. (1990). An alternative “description of personality”: The big-five factor structure. Journal of Personality and Social Psychology, 59(6), 1216–1229. https://doi.org/10.1037/0022-3514.59.6.1216CrossRef

Hekkala, K., Väyrynen, R., & Wiander, T. (2012). Information security challenges of social media for companies. Retrieved from https://www.researchgate.net/publication/264894370_Information_Security_Challenges_of_Social_Media_for_Companies

Holt, T. J., & Bossler, A. M. (2016). Cybercrime in progress: Theory and prevention of technology-enabled offenses. Crime science series (p. 156). London: Routledge.

Holt, T. J., Van Wilsem, J., Van de Weijer, S., & Leukfeldt, R. (2018). Testing an integrated self-control and routine activities framework to examine malware infection victimization. Social Science Computer Review, 38, 187. https://doi.org/10.1177/0894439318805067CrossRef

IBM. (2017). Insider threats: the danger within. Retrieved from https://www.ibm.com/industries/federal/cybersecurity-insider-threats

INSA. (2017) Assessing the mind of the malicious insider: using behavioral model and data analytics to improve continuous evaluation. Retrieved from https://www.insaonline.org/wp-content/uploads/2017/04/INSA_WP_Mind_Insider_FIN.pdf

Intelligence and National Security Alliance. (2015). Insider threat program roadmap. Retrieved from https://www.insaonline.org/insider-threat-roadmap/

iSIGHT Partners. (2014). Newscaster: An Iranian threat within social networks. https://paper.seebug.org/papers/APT/APT_CyberCriminal_Campagin/2014/2014.05.28.NewsCaster_An_Iranian_Threat_Within_Social_Networks/file-2581720763-pdf.pdf

Johnson, C. (2016). How social media jeopardizes data security. Retrieved from https://www.entrepreneur.com/article/272459

Jones, C. S., Morris, R, & Hartley N. T. (2013). Comparing correlations between four-quadrant and five-factor personality assessments. https://files.eric.ed.gov/fulltext/EJ1054970.pdf

Jou, S. (2019). How to use artificial intelligence to prevent insider threats. Retrieved from https://community.microfocus.com/t5/Security-Blog/How-to-use-Artificial-Intelligence-to-Prevent-Insider-Threats/ba-p/2686761

Karampelas, P. (2017). An organizational visualization profiler tool based on social interactions (pp. 369–394). Cham: Springer International Publishing.

Kennedy, H, & Moss, G. (2015). Known or knowing publics? Social media data mining and the question of public agency. Retrieved from https://journals.sagepub.com/doi/pdf/10.1177/2053951715611145

Kont, M., Pihelgas, M., Wojtkowiak, J., Trinberg, L., & Osula, A. M. (2015). Insider threat detection study. Retrieved from https://ccdcoe.org/uploads/2018/10/Insider_Threat_Study_CCDCOE.pdf

Long, C., Fang, L., & Danfeng Y. (2017). Enterprise data breach: causes, challenges, prevention, and future directions. Retrieved from https://www.researchgate.net/publication/318152978_Enterprise_data_breach_causes_challenges_prevention_and_future_directions_Enterprise_data_breachfrom

Long, D. J. (2004). Google hacking for penetration testers. Rockland, MA: Syngress Publishing, Inc..

Maasberg, M., Warren, J., & Beebe, N. L. (2015). The dark side of the insider: Detecting the insider threat through examination of dark triad personality traits. Retrieved from https://www.researchgate.net/publication/283296167_The_Dark_Side_of_the_Insider_Detecting_the_Insider_Threat_Through_Examination_of_Dark_Triad_Personality_Traits

Mahfuth, A. (2019). Human factor as insider threat in organizations. International Journal of Computer Science and Information Security (IJCSIS), 17(12), December 2019 issue.

Marston, W. M. (2008). Emotions of normal people. Louth: Cooper Press.

Mazzarolo, G., & Jurcut A. D. (2020). Insider threat in cybersecurity: The enemy within the gates. European Cyber Security Journal, 6(1), 57–63. Retrived from: https://cybersecforum.eu/media/ECJ_vol6_issue1.pdf

Nicholson, N., Soane, E., & Fenton-O’Creevy, M., Willman P. (2005). Personality and domain-specific risk taking. Retrieved from https://www.researchgate.net/publication/38174010_Personality_and_Domain-Specific_Risk_Taking

Nihad, & Rami. (2018). Open source intelligence methods and tools: A practical guide to online intelligence. New York City: USA. Apress Publisher.

Nurse, J. R. C., Buckley O., Legg P. A., Goldsmith M., Creese S., Wright G. R. T., & Whitty M. (2014). Understanding insider threat: A framework for characterizing attacks. Retrieved from https://core.ac.uk/download/pdf/160607091.pdf

Office of the Information and Privacy Commissioner of Alberta. (2018). OIPC investigation finds city of Calgary properly responded to privacy breach. Retrieved from https://www.oipc.ab.ca/news-and-events/news-releases/2018/oipc-investigation-finds-city-of-calgary-properly-responded-to-privacy-breach.aspx

Omand, D., Bartlett, J., Miller, C. (2012). Introducing social media intelligence (SOCMINT). Retrieved from https://www.researchgate.net/publication/262869934_Introducing_social_media_intelligence_SOCMINT

Petters, J. (2020). What is an insider threat? Definition and examples. Retrieved from https://www.varonis.com/blog/insider-threats/

Ponemon Institute. (2020). 2020 Cost of insider threats global report. Retrieved from https://www.observeit.com/cost-of-insider-threats/

Powell, T., & Sammut-Bonnici, T. (2015). Pareto analysis. Retrieved from: https://www.researchgate.net/publication/272353122_Pareto_Analysis

Schaurer, F. (2012). Social media intelligence (SOCMINT). Same song, new melody? OSINT blog. Retrieved from http://osintblog.org/2012/10/31/social-media-intelligence-socmint-same-song-new-melody/.

Schneir, B. (2018). How changing technology affects security. Retrieved from https://www.wired.com/insights/2014/02/changing-technology-affects-security/

Sheetz M. (2019). Meet Paige Thompson, who is accused of hacking Capital One and stealing the data of 100 million people. Retrieved from https://www.cnbc.com/2019/07/30/paige-thompson-alleged-capital-one-hacker-stole-100-million-peoples-data.html

Shelley, V. (2013). Shhh… can you keep a Secret? Protecting against insider threats. Retrieved from https://securityintelligence.com/insider-threats-how-keep-secret/

Sheridan, K. (2019). Capital one: What we should learn this time. Retrieved from https://www.darkreading.com/cloud/capital-one-what-we-should-learn-this-time/d/d-id/1335426

Skloot, G. (2019). How accurate is crystal? Retrieved from https://www.crystalknows.com/blog/crystal-accuracy

Stahie, S. (2019). Insider threat is still the biggest danger for companies – Data loss prevention is not working. Retrieved from https://securityboulevard.com/2019/10/insider-threat-is-still-the-biggest-danger-for-companies-data-loss-prevention-is-not-working/

Statista. (2020). Number of social network users worldwide from 2010 to 2023. Retrieved from https://www.statista.com/aboutus/

Șușnea, E., & Iftene, A. (2018). The significance of online monitoring activities for the social media intelligence. Retrieved from https://ibn.idsi.md/sites/default/files/imag_file/MFOI-2018_0.pdf#page=230

Trend Micro. (2018). The importance of employee cybersecurity training: top strategies and best practices. Retrieved from https://blog.trendmicro.com/the-importance-of-employee-cybersecurity-training-top-strategies-and-best-practices/

Trzeciak, R. (2017). 5 Best practices to prevent insider threat. Retrieved from https://insights.sei.cmu.edu/sei_blog/2017/11/5-best-practices-to-prevent-insider-threat.html

Warwick, A. (2019). Former AWS engineer arrested for Capital One data breach. Retrieved from https://www.computerweekly.com/news/252467556/Former-AWS-engineer-arrested-for-Capital-One-data-breach

Wijer S. G. A., & Leukfeldt E. (2017). Big five personality traits of cybercrime victims. Retrieved from: https://www.researchgate.net/publication/317987452_Big_Five_Personality_Traits_of_Cybercrime_Victims

Willers, J. (2017). Methods for extracting data from the Internet. Retrieved from https://lib.dr.iastate.edu/cgi/viewcontent.cgi?article=6650&context=etd

Xiangyu L., Qiuyang L., & Chandel S. (2017). Social engineering and insider threats. Retrieved from https://www.researchgate.net/publication/322412904_Social_Engineering_and_Insider_Threats

Zulkarnaen, R., Daud, M., Ghani, S., & Hery. (2016). Human factor of online social media cybersecurity. Risk impact on critical National Information Infrastructure (p. 196). Cham: Springer International Publishing.

Titel: Protect Against Unintentional Insider Threats: The Risk of an Employee’s Cyber Misconduct on a Social Media Site
verfasst von: Guerrino Mazzarolo
Juan Carlos Fernández Casas
Anca Delia Jurcut
Nhien-An Le-Khac
Verlag: Springer International Publishing
Buch: Cybercrime in Context
Print ISBN: 978-3-030-60526-1

Electronic ISBN: 978-3-030-60527-8

Copyright-Jahr: 2021
DOI: https://doi.org/10.1007/978-3-030-60527-8_6

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"