Posted on by Insider Threatin
For years the CERT Insider Threat Center has been studying organizations' current and former employees, contractors, and trusted business partners who steal intellectual property (IP) from their organizations. We have published reports that detail the problem: who does it, why, when, how, etc. We have also published reports on mitigation strategies based on our analysis of the problem. (Links to the reports are at the bottom of this post). These strategies focus on the detection of suspicious online actions, as well as logging strategies that provide electronic evidence to assist in the response process when insider theft is detected. A recent testimony by the FBI suggests that organizations need to pay attention to this significant problem.
On June 28, 2012, C. Frank Figliuzzi, Assistant Director, Counterintelligence Division , FBI, made a Statement Before the House Committee on Homeland Security, Subcommittee on Counterterrorism and Intelligence. His statement was titled "Economic Espionage: A Foreign Intelligence Threat to Americans Jobs and Homeland Security" (http://www.fbi.gov/news/testimony/economic-espionage-a-foreign-intelligence-threat-to-americans-jobs-and-homeland-security).
Key items of interest :
We urge you to review our reports to help you avoid being included in those statistics!
"A Pattern for Increased Monitoring for Intellectual Property Theft by Departing Insiders" http://www.sei.cmu.edu/library/abstracts/reports/12tr008.cfm
"Insider Threat Control: Using Centralized Logging to Detect Data Exfiltration Near Insider Termination"
"A Preliminary Model of Insider Theft of Intellectual Property"
"An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases"
"Spotlight On: Insider Theft of Intellectual Property iInsider the U.S. Involving Foreign Governments or Organizations"
"The CERT Guide to Insider Threats" (book published in Jan 2012)