{"id":2312,"date":"2018-02-06T10:00:38","date_gmt":"2018-02-06T14:00:38","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=2312"},"modified":"2018-02-06T10:23:09","modified_gmt":"2018-02-06T14:23:09","slug":"kurt-long-third-party-actors-insider-threats","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/","title":{"rendered":"Kurt Long: Third-Party Bad Actors and Insider Threats"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-2313\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png\" alt=\"bad actor third party insider threats Kurt Long FariWarning\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod-300x150.png 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod-768x384.png 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod-540x270.png 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod-162x81.png 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod-360x180.png 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\">Enterprises throughout the world are worried about their identity management and <a href=\"https:\/\/solutionsreview.com\/identity-management\/do-you-need-identity-goverance-and-administration-4-questions-to-ask-yourself2226-2\/\" target=\"_blank\" rel=\"noopener\">governance\u00a0<\/a>not only because they fear external threats, but internal ones as well. 90% of enterprises fear an insider threat, whether deliberately malicious or unintentional from ignorance, according to a <a href=\"https:\/\/www.infosecurity-magazine.com\/news\/fear-of-insider-threats-hits-an\/\" target=\"_blank\" rel=\"noopener\">recent study<\/a>. And with the increase in phishing attacks and <a href=\"https:\/\/solutionsreview.com\/identity-management\/numbers-security-conveince-iam\/\" target=\"_blank\" rel=\"noopener\">some studies<\/a> indicating that malicious insider threats might outnumber accidental ones, those worries do not seem entirely unjustified.<\/p>\n<p style=\"text-align: justify\">But what if the greatest internal threat is not from your employees but from the vendors you hire to handle issues your employees can&#8217;t? We spoke to Kurt Long, CEO of <a href=\"https:\/\/www.fairwarning.com\" target=\"_blank\" rel=\"noopener\">FairWarning<\/a>, about the oft-ignored issue of third-party bad actors and how they constitute a different kind of insider threat, edited slightly for readability.<\/p>\n<h4 style=\"text-align: justify\"><b>Solutions Review: Before the interview, you mentioned that there was an epidemic of bad actor contractors and third-party vendors capitalizing on enterprises\u2019 weak points. What does this insider threat epidemic entail and how extensive is it? <\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Kurt Long: Due to the increased interconnectivity of modern business, an organization\u2019s network spans over a greater area than ever before. From cloud based vendor and partners to third-party contractors, a business network can be viewed as a web. The role of security was once to secure data within [the corporate] infrastructure, which required a \u201cperimeter \u201capproach to security. Now, data must be secured from both internal and external attackers who can gain access to sensitive company data from the cloud or on mobile devices. Furthermore, the availability of \u201ccrime-as-a-service\u201d has risen, giving bad actors the ability to, relatively easily, sell data on the dark web for monetary gain.<\/span><\/p>\n<h4 style=\"text-align: justify\"><b>SR: Who are these bad actor contractors and third-party vendors? Are they similar in any way (called to do similar jobs or working in similar fields)? Why are they being hired?<\/b><\/h4>\n<p style=\"text-align: justify\"><br \/>Widget not in any sidebars<br \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: Third-party vendors and contractors are considered insiders in your network. 60% of attacks are caused by employees inside your organization with 44.5% being malicious and 15.5% being inadvertent actors. The third-party bad actors may or may not intentionally cause a breach, but if they have weak security measures then they are a target for cybercriminals to exploit.<\/span><\/p>\n<h4 style=\"text-align: justify\"><b>SR: Can you provide major examples of bad actor contractors and third-party vendors causing a data breach?<\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: Some of the largest and most infamous breaches are caused by third-parties. Target experienced a breach via third-party vendor when cyber attackers compromised a vendor and infiltrated Target\u2019s network, gaining access to over 40 million user accounts. [The] Yahoo! breach, where all 3 billion users were affected in 2013, was [also] caused by a third-party.<\/span><\/p>\n<h4 style=\"text-align: justify\"><b>SR: Are there any identifiers of bad contractors that enterprises can use during the hiring process to prevent these attacks? <\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: Mitigating risk against bad contractors before they are hired mostly involves research: ask for references, ensure that they sign a Business Associate Agreement (BAA), and ask questions to investigate how secure their processes really are.<\/span><\/p>\n<h4 style=\"text-align: justify\"><b>SR: How are bad actor third-party vendors getting away with these breaches? What are the biggest security weaknesses enabling them to do so?<\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: A 2017 Ponemon Report on Data Risk in the Third-Party Ecosystem found that 56% of businesses reported experiencing a third-party data breach in the last year. Businesses who don\u2019t have an overarching view of their data can give third-party vendors and contractors too much permissions access \u2013 allowing them to access sensitive data. Furthermore, without proper user activity monitoring, access to this data can go completely unnoticed.<\/span><\/p>\n<h4 style=\"text-align: justify\"><b>SR: So how do you stop a contractor from plugging in and walking out the door with sensitive data?<\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: There are tools and processes every organization should take in dealing with third-party vendors and contractors:<\/span><\/p>\n<ol style=\"text-align: justify\">\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Have a proper view of where your most sensitive data and who has access to it. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Have all vendors sign a BAA <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Assess the security of your vendors. Have vendors perform a technical scan to analyze their network for vulnerabilities.<\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Most importantly, you should be monitoring access to your data. You should know who is accessing what data inside your network. Specifically, apply monitoring to third-party contractors and monitor at the depth necessary to identify unusual behavior.<\/span><\/li>\n<\/ol>\n<h4 style=\"text-align: justify\"><b>SR: How are organizations using automated threat technologies (such as insider intelligence, employee behavior monitoring and analytics) to mitigate bad actors and insider threats? <\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: Organizations are using use activity monitoring and user behavioral analytics to monitor user behavior and provide insights into who, where, why, when, and what insider, including third-party contractors, are doing. These technologies can monitor for unusual login-activity, data exfiltration, changes in permissions, or login-as activity that may be associated with malicious behavior.<\/span><\/p>\n<h4 style=\"text-align: justify\"><b>SR: What other measures are necessary to prevent and mitigate these kinds of attacks? <\/b><\/h4>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">KL: Employees are either the greatest vulnerability to an organization or the best line of defense. Implementing a culture of security and accountability will help secure your organization. The idea is to move towards preventing security issues rather than discovering problems when the damage has already been done. Training through LMS (learning management systems) systems on your acceptable use policies, monitoring technology, current cyber threats, and sanctioning will aid in defining a strong culture of security.<\/span><\/p>\n<p>Thanks again to Kurt Long of FairWarning for his time and expertise!<\/p>\n<p style=\"text-align: justify\"><br \/>Widget not in any sidebars<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Enterprises throughout the world are worried about their identity management and governance\u00a0not only because they fear external threats, but internal ones as well. 90% of enterprises fear an insider threat, whether deliberately malicious or unintentional from ignorance, according to a recent study. And with the increase in phishing attacks and some studies indicating that malicious [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":2313,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5,1],"tags":[142,16,112,611,615,188,610,189,612],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Kurt Long: Third-Party Bad Actors and Insider Threats<\/title>\n<meta name=\"description\" content=\"We spoke to Kurt Long, CEO of Fair Warning, about third-party bad actors and how they constitute a different kind of insider threat. \u00a0\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/\",\"name\":\"Kurt Long: Third-Party Bad Actors and Insider Threats\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png\",\"datePublished\":\"2018-02-06T14:00:38+00:00\",\"dateModified\":\"2018-02-06T14:23:09+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"We spoke to Kurt Long, CEO of Fair Warning, about third-party bad actors and how they constitute a different kind of insider threat. \u00a0\u00a0\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png\",\"width\":800,\"height\":400,\"caption\":\"bad actor third party insider threats Kurt Long FariWarning\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Kurt Long: Third-Party Bad Actors and Insider Threats\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Kurt Long: Third-Party Bad Actors and Insider Threats","description":"We spoke to Kurt Long, CEO of Fair Warning, about third-party bad actors and how they constitute a different kind of insider threat. \u00a0\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/","url":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/","name":"Kurt Long: Third-Party Bad Actors and Insider Threats","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png","datePublished":"2018-02-06T14:00:38+00:00","dateModified":"2018-02-06T14:23:09+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"We spoke to Kurt Long, CEO of Fair Warning, about third-party bad actors and how they constitute a different kind of insider threat. \u00a0\u00a0","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/02\/third-party-bad-actor-mod.png","width":800,"height":400,"caption":"bad actor third party insider threats Kurt Long FariWarning"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/kurt-long-third-party-actors-insider-threats\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"Kurt Long: Third-Party Bad Actors and Insider Threats"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/2312"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=2312"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/2312\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/2313"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=2312"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=2312"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=2312"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}