• Home
  • Get A Quote
  • Customer Service
  • Refer a Friend
  • About Us
  • Location Map
  • Employee Directory
  • Privacy Policy
  • Contact Us
 
CALL US AT 352.332.0180
Home
  • Home
  • Get A Quote
  • Customer Service
  • What We Offer
    • Auto Insurance
    • Business Insurance
    • Commercial Auto Insurance
    • Contractors Insurance
    • Home Insurance
    • Renters Insurance
    • Boat | Motorcycle | RV
  • Blog
  • Resources
    • Secure File Area
    • Refer a Friend
    • Important Links
    • Insurance Glossary
  • About Us
    • About Us
    • Location Map
    • Privacy Policy
  • Contact
    • Contact Us
    • Join Our Newsletter
Auto Insurance PERSONAL AUTO
Auto Insurance COMMERCIAL AUTO
Homeowners Insurance HOME
Business Insurance BUSINESS
Toy Insurance TOYS
Contractors Insurance CONTRACTORS
Home > Blog > Protecting Your Firm from Hacking by Disgruntled Former Employees
FRIDAY, SEPTEMBER 4, 2020

Protecting Your Firm from Hacking by Disgruntled Former Employees

Protect Your Firm from Hacking by Disgruntled Former Employees

While hacking by outsiders is posing a larger and more significant threat to companies of all sizes, the threat of insider jobs - particularly by disgruntled former employees - is often a bigger one.

These attacks, carried out with malicious intent to hamstring a company's operations, can cause serious problems. Take, for example, the following recent events:

  • A former employee of Spellman High Voltage Electronics Corp. is facing charges after employees began reporting that they were unable to process routine transactions and were receiving error messages after he resigned, due to allegedly being passed over for a promotion.

    The mayhem cost his former employer more than $90,000, and he was arrested. "The defendant engaged in a 21st-century campaign of cyber-vandalism and high-tech revenge," said Loretta Lynch, the United States attorney for the Eastern District.
  • A former employee of McLane Advanced Technologies was sentenced to 27 months in prison and ordered to pay $35,816 in restitution after pleading guilty to hacking into McLane's systems and deleting payroll files to the point that staff could not clock in and the company could not issue payroll checks. He was upset after the company had fired him and then refused to help him obtain unemployment benefits.

With these cases in mind, there are internal steps you can take to avoid this sort of thing happening at your company, including:

Route all offsite access through a VPN - This can typically prevent someone from entering your system altogether. But once you have such a system in place, all outside connections need to be logged and monitored for suspicious activity.

Test your disaster recovery plan - You need to have a disaster recovery plan in place that includes backing up data every day, just in case someone deletes data from your servers. That way, if data is deleted you can immediately switch to a backup IT environment. Oftentimes, organizations do disaster recovery, but unless they practice the actual recovery, they don't know if it will work, and it doesn't matter whether they have a physical or a virtual environment. So, don't forget to test any plans you have.

Block unapproved software - Sometimes your employee hackers will install extra software that makes it easier for them to root through your system and create havoc. You should have systems in place that do not allow anybody to install unapproved software.

Disable ex-employee accounts and passwords - Whenever an employee or contractor ceases to work at your business - or in the case of layoffs, beforehand - disable their network access, accounts and passwords.

Block root access to everything - Well-run IT shops always block direct, root-level (for Unix) or admin-level (for Windows) access to critical systems. They do this because they know that giving IT employees too much access is an invitation to commit abuse. Accordingly, give users unique passwords to systems and restrict what they can access. Assigning individual passwords to employees also makes it much easier to revoke them, and to monitor how they're being used.

Make suspect behavior cause for concern - Watch for human-behavior warning signs such as complaining to others about the company and more than usual time accessing your company data on your network. Develop a response plan for when such signs are spotted. 

Beware resignations, terminations - Most people who steal intellectual property or destroy systems do so within 30 days of resignation. Keep a close eye on departing or departed employees, and what they viewed. If someone resigns who has had access to your most sensitive company information, including trade secrets, you need to pay special attention to ensure it's not compromised.

Marshall forces - Businesses that prepare for attacks in advance tend to better manage the aftermath. When it comes to combatting cases of suspected insider threat, include human resources, supervisors, upper management, security, legal and your IT crew in developing a company-wide plan.

Thank you for visiting the Partners Insurance Agency blog. We hope you found our content helpful and informative.

 

Posted 12:00 PM

Tags: business insurance, avoid business hacking
Share |


No Comments


Post a Comment
Required
Required (Not Displayed)
Required


All comments are moderated and stripped of HTML.

NOTICE: This blog and website are made available by the publisher for educational and informational purposes only. It is not be used as a substitute for competent insurance, legal, or tax advice from a licensed professional in your state. By using this blog site you understand that there is no broker client relationship between you and the blog and website publisher.
Blog Archive
  • 2021
  • 2020
  • 2019
  • 2018
  • 2017
  • 2016

  • insurance(99)
  • homeowners insurance(44)
  • auto insurance(40)
  • business insurance(29)
  • home insurance(11)
  • boat insurance(8)
  • workers compensation(8)
  • insurance claims(8)
  • liability insurance(7)
  • flood insurance(6)
  • liability(5)
  • additional insured(5)
  • commercial liability insurance(4)
  • d&o insurance(4)
  • umbrella insurance(4)
  • hurricane preparedness(4)
  • commercial auto insurance(4)
  • renters insurance(4)
  • insurance discounts(4)
  • teen drivers(3)
  • vacation rental insurance(3)
  • business owners policy(3)
  • tria(3)
  • small business insurance(3)
  • insurance coverage(3)
  • water damage(3)
  • summer safety(3)
  • workplace safety(3)
  • commercial insurance(3)
  • commerical insurance(3)
  • covid-19(3)
  • uber(2)
  • non-owned auto insurance(2)
  • drunk driving(2)
  • employee fraud(2)
  • terrorism risk insurance(2)
  • business owners insurance(2)
  • insurance liability(2)
  • freezing pipes(2)
  • halloween safety(2)
  • auto accident scams(2)
  • holiday safety(2)
  • natural disasters(2)
  • contractors(2)
  • moving(2)
  • dog liability insurance(2)
  • forced-placed insurance(2)
  • claims process(2)
  • buisiness insurance(2)
  • general liability(2)

View Mobile Version
Facebook
Twitter
LinkedIn
Carriers
logo, company name
text, logo
Carriers
logo
icon
logo, company name
PIA

Resources

Home About Us Get a Quote Customer Service Contact Us
a drawing of a face

Contact Us

icon
  • 4040 W Newberry Road Suite 950
  • Gainesville, FL 32607
  • Office: 352.332.0180
  • Fax: 352.378.5820
© Copyright. All rights reserved.
Powered by Insurance Website Builder