Archive: 2014-05

Hello, this is Matt Collins of the CERT Insider Threat Center. We are pleased to announce the publication of our paper "Four Insider IT Sabotage Patterns and an Initial Effectiveness Analysis." The paper describes four mitigation patterns of insider IT sabotage and initial results from a review of 46 cases from the CERT Insider Threat Database (MERIT Database).

Each pattern was developed to prevent or detect potentially malicious actions related to insider threat IT sabotage cases. We examined the potential effectiveness of these patterns with statistical analysis of data in the MERIT Database. We also consider statistical significance, including a discussion of inter-rater reliability (IRR) and dataset size.