The majority of organisations see employee misuse of the corporate network as the biggest security threat they face, a new survey has revealed.
The threat from within an organisation led in the league table of potential sources of a data breach for 41 per cent of the 250 IT directors and board-level decision makers questioned by LSI, a storage and networking technology provider.
Traditional hacking attacks from outside an organisation's firewall were considered the second biggest threat, with 21 per cent of respondents.
And the widening of network perimeters was seen as the third biggest threat (15 per cent), followed by terrorist threats and a lack of encryption in data centres.
With internal network security firmly the focus of the survey respondents, it also emerged that cost was the most common reason why organisations were not investing in this critical area of their IT defences.
But recent events have shown the disgruntled or careless employee is in the best position to breach data security.
Earlier this month, a system administrator working for the city of San Francisco was arrested for allegedly locking the authority out of its brand new fibre (wide area network) WAN, which stores around 60 per cent of its data after a run-in with the city's head of security. He reportedly set a master password giving him exclusive access to the network, preventing administrators from accessing routers and switches.
A statement issued at the time by San Francisco District Attorney Kamala Harris also said the administrator, Terry Childs had "set up devices to gain unauthorised access to the system".
Whether malicious or unintentional John Bromhead, LSI product marketing manager said the survey figures showed that staff education and IT investment are key when it comes to security.
And the effects of lax internal security have been felt in the UK too. The data breach that lost data on 25 million UK citizens on an unencrypted Department of Work and Pensions disk late last year was just one of a catalogue of public and private sector breaches that have highlighted the dangers of lax internal IT security practices. As a result, civil servants are now being given special data security training.
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Facebook blames faulty configuration change for hours-long outageNews The update caused a "cascading effect" that brought all of the social network's services to a halt
-
How your network can take on the cloud - and winWhitepapers Think beyond traditional networking toward a secure digital perimeter
-
What is a DHCP server?In-depth We take a closer look at what a DHCP server is, and how it can make network administration easier
-
Aruba's SD-Branch hooks SD-WAN, wired and wireless networks togetherNews Cloud-managed policy controls simplify network management for small IT teams
-
The Tube is getting total web coverage from 2019 and London's getting a broadband boostNews Sadiq Khan wants the capital to be better connected, and he’s got a plan on how to do it
-
Telcos offer Europe 5G networks if EU weakens net neutralityNews Mobile companies say net neutrality threatens their returns on investment in 5G
-
Netgear ProSafe WAC730 reviewReviews Top value, features and four management modes make deploying a business wireless network easy
-
Mitsubishi Outlander hybrid car can be wirelessly hackedNews Wi-Fi loopholes allowed vehicle’s lights to be turned on, charging settings tweaked and battery drained
