The threat of a cyber-attack from the inside is nothing new. Disgruntled employees have been sabotaging their employers’ networks and stealing data since the early days of widespread internet usage in the 1990s. But despite years of warnings against “the enemy within”, malicious deletion and other insider threats are on the rise.
According to one study, the risk of insider threats was already dire with around half of the organizations in the study experiencing at least one malicious insider incident during the year prior. However, a new study by The Ponemon Institute found that the outlook is even more grim, with the number of cybersecurity incidents originating from inside organizations growing by 47% between 2018 and 2020.
Insider threats may be one of the most overlooked areas of cybersecurity. It’s not hard to understand why: many organizations thoroughly vet their employees before hiring and believe that they have chosen trustworthy workers. This is compounded by IT thought leaders and media outlets frequently discussing widening the threat landscape and the growing complexity of cyber-attacks from outside sources. Companies already have a lot on their hands when it comes to securing their networks and data – protecting against disgruntled employees has become more of an afterthought.
To make matters worse, digital ecosystems are now more complex than ever so it’s even harder for security professionals to protect their organizations from insider threats. One reason is the rise in remote work which increases the need for more people to connect and access data from anywhere. With adoption rates for platforms like Microsoft 365 (formerly Office 365) rising sky high, securing the corporate digital landscape is more important than ever.
To complicate matters even further, digital transformation has changed the face of the insider threat. Now, with the rise of cloud adoption, the gig economy, and the increased use of digital services, there are more “insiders” to consider. Vendors, contract workers, freelancers, and third-party partners have access to the network, albeit in varying degrees.
It all boils down to this: more people connected to the network equals more risk. But people should be one of your organization’s largest assets so you cannot simply deny them access just to keep your data safe. In a work environment enabled by collaborative solutions like Microsoft 365, where users from all over your company can connect and collaborate, having your data backed up automatically is a smart way to mitigate insider threats like malicious deletion. BackupSimple does this for you by providing a unified management solution to help you mitigate the risk of losing your data forever after a malicious deletion incident at your company.