Insider Threat

William Evanina is the Counterintelligence Leader our Nation Needs

The digital threat landscape is wrought with nation-state advanced persistent threat groups, cyber-mercenaries, dragnet surveillance propagandists, insider threats, and numerous other dangerous adversaries intent on exfiltrating vital intelligence, disseminating poisonous disinformation, compromising vital systems, and disrupting critical operations. America’s critical infrastructure and national security assets are under constant assault. Qualified Information Security leaders are scarce .. read more

How To Protect Critical Infrastructure From Insider Threats

  By William R. Evanina [William R. Evanina is the Director of the National Counterintelligence and Security Center and the recipient of the 2017 ICIT Pinnacle Award.]   Silicon Valley is synonymous with innovation and technology. As anyone working in this space knows—particularly for start-ups with proprietary information—you have to be able to trust your .. read more

ICIT Analysis: The Graham-Klobuchar Amendment Can Secure Election Infrastructure

Election integrity is a non-partisan issue that merits significant bipartisan support. Multiple players are capable of exploiting the vulnerabilities present in the often insecure, black-box proprietary code and unsecurable, antiquated legacy technology upon which U.S. election tabulation infrastructure relies. The Graham-Klobuchar Amendment aims at achieving Secure State Election Infrastructure through a Federal-State collaborative commission of .. read more

HHS’ HCCIC Takes a Quantum Leap Forward to Secure the Health Sector

HHS is aggressively working with industry to introduce organizational cybersecurity resiliency to the Health Care Industry and move organizations away from self-regulating, checkbox-driven security standards which provide little more than security theatre.  The Healthcare Cybersecurity and Communications Integration Center (HCCIC), HHS’s new cybersecurity intelligence-sharing clearing-house, is a major step toward this goal and acts as .. read more

ICIT Brief: In 2017, The Insider Threat Epidemic Begins

Just as American and European critical infrastructure executives were beginning to wrap their minds around the devastation of the Office of Personnel Management breach, ransomware erupted onto the scene, followed by concentrated DDoS attacks such as the Mirai botnet attack on Dyn, which enabled a quantum leap for cyber criminals.  Now, all techno-forensic indicators suggest .. read more

ICIT Brief – The Energy Sector Hacker Report: Profiling the Hacker Groups that Threaten our Nation’s Energy Sector

Among our Nation’s critical infrastructures, the Energy Sector is a primary target for exploitation by nation state and mercenary APTs, hacktivists, cyber jihadists and other hacker teams. Although the nation’s socioeconomic survival depends on the energy sector to deliver energy to the homes and businesses that support life, business operations, and critical systems, it was .. read more

ICIT Brief – The Anatomy of Cyber-Jihad: Cyberspace is the New Great Equalizer

Until now it has been fairly easy to categorize malicious cyber-actors as State Sponsored APT, Hacktivist, Mercenary and Script Kiddie. However, a new threat actor has emerged who uses technological means to bring terror and chaos to our nation and its allies: the Cyber-Jihadist. Cyber-Jihad has quickly arrived on the scene and will only continue .. read more