A well known vulnerability in cyber security is the threat posed by an insider, i.e. an employee/former employee who for some reason decides to turn to the dark side. Using knowledge gained on the job, and access often not terminated at departure, the isider is able to steal data, divert funds, or manipulate systems to cause damage/loss. There can be severe financial losses as in the Société Générale case. A recent Foreign Policy article discusses the case of a California contractor who was not offered a full time position taking control of an offshore oil rig via its communication link. As more systems move to automated and unmanned control systems, the risk increases.
Sobering thought as Brazil moves to expolit its newly discovered deep water reserves. Automations saves signfigant costs but its not a free lunch.
Thursday, September 3, 2009
Subscribe to:
Posts (Atom)
Posts
