Disgruntled employees can prove to be the biggest threat for the cyber security of an organization as they have access to confidential information as well as the motive to exploit or expose it. Therefore, there should be a careful systematic approach to handle them and aggression should be avoided.
Are Disgruntled Employees a Cyber Threat?
Most employers would mistake to think, why fear your own employees. Well. Have a look at the following real-world statistics which explain how real insider threats can be.
Impact of Insider Threats
Statistics show that disgruntled employees are capable of practically harming an organization’s reputation. At the very least, they may steal propriety information for personal benefits or identity theft, and they may expose customer data or company’s financial information to unauthorized people.
Initially, it is best to avoid any reasons that could get an employee disgruntled. Employees should feel respected and their hard work should be appreciated through rewards. However, if employees still remain unsatisfied, make sure to implement strong measures in your organization to save your company’s confidential information from disgruntled employees in every way possible.
“The exploitation of business networks and servers by disgruntled and/or former employees has resulted in several significant FBI investigations in which individuals used their access to destroy data, steal proprietary software, obtain customer information, purchase unauthorized goods and services using customer accounts, and gain a competitive edge at a new company,” the alert stated.
The alert added that personal email accounts and cloud storage services like Dropbox were used to facilitate stealing of propriety information. It also reported installation of unauthorized remote desktop protocol (RDP) software by employees who had been fired. Some disgruntled employees went as far as restricting access to company’s websites and disabling their CMS, or launching DDoS attacks, the alert stated. The attacks costed between $5,000 to $3 million.
How to Avoid Cyber Threats by Disgruntled Employees
FBI and DHS advise therefore that all companies should follow the precautions below:
SpectorSoft CEO Jason Judge also advised closely monitoring the online activities of employees, specially starting 30 days before the termination date.
Additionally, organizations should implement the following measures.