{"id":88939,"date":"2020-10-14T15:00:17","date_gmt":"2020-10-14T12:00:17","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/"},"modified":"2020-10-14T15:00:17","modified_gmt":"2020-10-14T12:00:17","slug":"the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/","title":{"rendered":"#The Disgruntled Employee and the Damage They Can Do \u2013 CloudSavvy IT"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_85 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a34d3c8b180d\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a34d3c8b180d\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#The_Disgruntled_Employee\" >The Disgruntled Employee<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#No_Cyber_Skills_Required\" >No Cyber Skills Required<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#City_of_San_Francisco\" >City of San Francisco<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#RANLife_Home_Loans\" >RANLife Home Loans<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Morrisons_Supermarket\" >Morrisons Supermarket<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#More_Mundane_Examples\" >More Mundane Examples<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#The_Warning_Signs\" >The Warning Signs<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Disengagement\" >Disengagement<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Lifelessness\" >Lifelessness<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Frequent_Sick_Days\" >Frequent Sick Days<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Theyre_In_the_Wrong_Role\" >They\u2019re In the Wrong Role<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#They_Become_Withdrawn\" >They Become Withdrawn<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Theyre_Unusually_Sensitive\" >They\u2019re Unusually Sensitive<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/buradabiliyorum.com\/en\/the-disgruntled-employee-and-the-damage-they-can-do-cloudsavvy-it\/#Steps_You_Can_Take\" >Steps You Can Take<\/a><\/li><\/ul><\/nav><\/div>\n<p><strong>&#8220;#The Disgruntled Employee and the Damage They Can Do \u2013 CloudSavvy IT&#8221;<\/strong><\/p>\n<div id=\"article-content-area\">\n<img loading=\"lazy\" decoding=\"async\" class=\"imgchk9 alignnone wp-image-7332 size-full\" src=\"https:\/\/www.cloudsavvyit.com\/thumbcache\/0\/0\/55e1c20fc65569c4b4d4ce7b4797edca\/p\/uploads\/2020\/10\/bcc1671f.png\" alt=\"Cubicle employee.\" width=\"700\" height=\"300\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><\/p>\n<p>It\u2019s easy to think that cybersecurity is all about keeping the data in and keeping the bad guys out. But what about your staff? That body of people already inside your firewall, and allowed to connect to your network. What if one of them turns rogue?<\/p>\n<h2 id=\"the-disgruntled-employee\"><span class=\"ez-toc-section\" id=\"The_Disgruntled_Employee\"><\/span>The Disgruntled Employee<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The idea of an employee mounting a cyberattack against their own employer is a real concern. It needs to be considered, planned for, and strategies put in place in case it becomes a reality. Insider cyberattacks are such a clear and present danger that there is a generic name for the employee who turns against the company. They\u2019re known as the disgruntled employee.<\/p>\n<p>The triggers that drive employees to commit insider attacks are as varied as people. It might be a single significant event or it might be a long string of smaller issues. Personal perspective comes into play here. Something one person might shrug off and forget within a day or so can be a huge deal for someone else.<\/p>\n<p>Of course, circumstances outside of work can lower a person\u2019s ability to cope with issues in the workplace. If an individual is burdened with pressures and problems in their home life they are going to cope less well with additional workplace strife, whether the root cause is real or imagined. The character and mental toughness of an individual inevitably play their part.<\/p>\n<p>A recurring <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">theme<\/a> with disgruntled employees is they say they were driven to do what they did because of resentment about an event or action that they feel is unfair. The term\u00a0<em>unfair<\/em>\u00a0crops up frequently in transcripts of these cases.<\/p>\n<p>These are common threads that appear and reappear in disgruntled employee scenarios:<\/p>\n<ul>\n<li>They have been passed over for promotion too many times.<\/li>\n<li>They don\u2019t get raises they feel are justified.<\/li>\n<li>They don\u2019t feel valued by their employer\u2014or even visible and noticed.<\/li>\n<li>They feel they\u2019re being taken advantage of.<\/li>\n<li>They object to the career progress of a colleague they deem unworthy to receive rewards and new positions.<\/li>\n<li>Their im<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">media<\/a>te manager or team leader takes the credit for their hard work.<\/li>\n<li>They are facing redundancy when\u2014in their view\u2014poorly performing employees are being retained.<\/li>\n<li>A grievance they raise doesn\u2019t produce the desired outcome.<\/li>\n<\/ul>\n<p>Employees who are moving to another job can be a risk, too. They may try to impress their new employer by arriving with some of your company\u2019s confidential data. Are they leaving because of the attraction of the new job, or are they leaving because of disillusionment with their current role or company? If it\u2019s the latter, they may plan a damaging parting shot of some form.<\/p>\n<p>In some rare cases, a disgruntled employee is identified and approached by a\u00a0 third party such as a cybercriminal gang, a competitor, or even a hostile nation-state sponsored hacking team. They turn the employee into their man on the inside. The employee may receive financial rewards from the third party or they may be content just to have a chance for vengeance.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"No_Cyber_Skills_Required\"><\/span>No Cyber Skills Required<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The damage delivered by an insider attack can be devastating. The insider has at least some knowledge of the systems, applications, and infrastructure of your organization. And system administrators become disgruntled, too, and they have intimate knowledge of your systems. Disgruntled employees usually have plenty of time to work out a plan of attack. Even if redundancy is on the horizon, the employee will have plenty of notice.<\/p>\n<h3 id=\"city-of-san-francisco\"><span class=\"ez-toc-section\" id=\"City_of_San_Francisco\"><\/span>City of San Francisco<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>In 2008,\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/caselaw.findlaw.com\/ca-court-of-appeal\/1647874.html\">Terry Childs<\/a>\u00a0was one of the network administrators for the infrastructure supporting the\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/en.wikipedia.org\/wiki\/Fiber-optic_communication\">fiber-optic<\/a>\u00a0backbone that carried most of the traffic for the City of San Francisco. The City payroll, e-mail, law enforcement, and jail documentation depended on this fiber connection.<\/p>\n<p>Childs changed all the administrator passwords effectively locking every other administrator out of the system. In his skewed judgement, he thought the other administrators would make administrative errors with the new network.<\/p>\n<p>He refused\u00a0repeatedly to reveal the passwords\u2014even after he was arrested. Because of his behavior, the fiber network was left operational but without administrative support for 12 days during the Summer of 2008. Childs eventually handed over the passwords when Mayor Gavin <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a>om visited Childs in the jailhouse. He was sentenced to four years.<\/p>\n<h3 id=\"ranlife-home-loans\"><span class=\"ez-toc-section\" id=\"RANLife_Home_Loans\"><\/span>RANLife Home Loans<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Alcohol can certainly skew your judgement. It skewed 23-year-old\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.datacenterknowledge.com\/archives\/2010\/08\/26\/drunken-employee-shoots-up-a-server\">Joshua Lee Campbell\u2019s<\/a> judgement sufficiently that after an evening drinking with a colleague he returned to the office of\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.ranlife.com\/\">RANLife Home Loans<\/a>, a Salt Lake City mortgage company, and shot a USD 100,000 server seven times with his .45 pistol.<\/p>\n<p>He was charged with criminal mischief (a second-degree felony), carrying a dangerous weapon while under the influence of alcohol, and providing false information to the police (both Class B misdemeanors), and public intoxication (a Class C misdemeanor).<\/p>\n<h3 id=\"morrisons-supermarket\"><span class=\"ez-toc-section\" id=\"Morrisons_Supermarket\"><\/span>Morrisons Supermarket<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Andrew Skelton, a senior auditor at\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/groceries.morrisons.com\/webshop\/startWebshop.do\">Morrisons<\/a>\u00a0supermarket, was dragged over the coals in a disciplinary hearing in 2014. He was dispatching private mail\u2014<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"http:\/\/redirect.viglink.com?u=https%3A%2F%2Fwww.ebay.com%2Fn%2Fall-categories&amp;key=204a528a336ede4177fff0d84a044482\">eBay<\/a>\u00a0sales\u2014using the company\u2019s mailroom and letting the company foot the shipping charges. Somehow, he retained his job.<\/p>\n<p>One month later, he was given the task of collating 100,000 sets of employee\u2019s personal data and sending it to Morrisons\u2019 external auditor. He kept a copy for himself, uploaded it to a file-sharing site and then tipped off the press. This is a huge data privacy issue and, because Morrisons is a U.K.-based supermarket, a breach of the\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.legislation.gov.uk\/ukpga\/1998\/29\/contents\">Data Protection Act 1998,<\/a>\u00a0which was the legislation at the time of the offense.<\/p>\n<p>It has taken Morrisons seven years and a long battle in the U.K. Courts, the Court of Appeal, and finally the Supreme Court to prove that they were not <a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/en.wikipedia.org\/wiki\/Vicarious_liability_in_English_law\">vicariously liable<\/a> for the unauthorized actions of a rogue employee. They needed that decision to <a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/www.bbc.co.uk\/news\/uk-england-leeds-52124997\">forestall a class action<\/a> that was brought against them by 9,000 of the affected data subjects.<\/p>\n<p>Even so, the data breach has cost Morrisons over GBP 2 million in legal fees, PR, damage limitation, and providing information and assistance to affected employees. Andrew Skelton was sentenced to eight years of imprisonment.<\/p>\n<p>Note that none of these cases involved hacking. All that was required was an employee with a grudge.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"More_Mundane_Examples\"><\/span>More Mundane Examples<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Less extreme examples involve job leavers stealing sales prospect lists, or deleting their email, files, or other data before they leave. They may post malicious lies and rumors on social media about the company, their boss, or a colleague. They may send a \u201cwarts-and-all \u2018this is why I\u2019m leaving&#8217;\u201d email to all the contacts in their email address book.<\/p>\n<p>Programmers often take chunks of code they\u2019ve written for your company to use as supporting evidence in job interviews. Disgruntled employees may intentionally introduce a virus. They may create an account they can use to remotely access your systems when they have left.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"The_Warning_Signs\"><\/span>The Warning Signs<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Managers and team leaders need to look for changes in productivity, attitude, and interactions with others in the staff they are responsible for. Special attention should be paid to staff members who have undergone a significant event at work or at home. Has someone in your department been through a disciplinary, made a failed bid for promotion, or received a poor appraisal?<\/p>\n<p>You won\u2019t know everything about a colleagues\u2019 private life, but you ought to know if someone has suffered a bereavement or other major life change like divorce or losing a custody battle.<\/p>\n<p>In a caring way, not a whistle-blowing way, your staff ought to feel they can bring concerns about their colleagues to their management. It\u2019s too late after the event for staff to comment that they had a feeling something wasn\u2019t right with a colleague. They need to speak up when they start to have concerns. That won\u2019t happen unless they are comfortable in doing so, and secure in the knowledge that they\u2019re operating according to company policy.<\/p>\n<p>As a point in case, the COVID-19 pandemic has brought about a sudden and widespread switch to working from home. The isolation of home working doesn\u2019t suit anyone. With the current focus on safeguarding your own mental health, looking out for your colleagues is just a natural extension of that. The attention being paid to remote colleagues\u2019 welfare needs to be promoted and continued in normal operational conditions.<\/p>\n<p>Behavioral changes that might indicate a colleague is drifting towards disgruntlement include:<\/p>\n<h3 id=\"disengagement\"><span class=\"ez-toc-section\" id=\"Disengagement\"><\/span>Disengagement<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>A disinterested remoteness and disconnectedness from work tasks, responsibilities, and colleagues is a warning sign that the affected individual could be in a downward spiral. Efforts should be made to try to identify the causes and the severity of the situation.<\/p>\n<h3 id=\"lifelessness\"><span class=\"ez-toc-section\" id=\"Lifelessness\"><\/span>Lifelessness<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Extended periods of emotional, mental, and physical exhaustion can quickly become serious. The affected individual may seem distant and one step removed. They may appear forgetful, lacking in focus, and completely drained from the moment they arrive at work.\u00a0This can be accompanied by constant muscle aches, perpetual headaches, and shortness of breath. Their complexion may suffer, and there may be a sudden weight change. They may neglect their appearance.<\/p>\n<h3 id=\"frequent-sick-days\"><span class=\"ez-toc-section\" id=\"Frequent_Sick_Days\"><\/span>Frequent Sick Days<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Employees who are on the brink of burnout or are suffering from stress tend to use a lot of sick days, and make frequent mistakes or have accidents at work. When an employee is becoming disgruntled, they tend to be focussed on their issues or their adversary, real or imagined. This leaves little concentration for their actual work.<\/p>\n<h3 id=\"theyre-in-the-wrong-role\"><span class=\"ez-toc-section\" id=\"Theyre_In_the_Wrong_Role\"><\/span>They\u2019re In the Wrong Role<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>If someone\u2019s role has changed or they\u2019ve been promoted into a position with more responsibility and they never seem to find their feet, perhaps the role is too much for them. New recruits may be overwhelmed, too. This can lead to\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/en.wikipedia.org\/wiki\/Impostor_syndrome\">impostor syndrome<\/a>\u00a0and feelings of uselessness and a sense of constant, draining, struggle.<\/p>\n<h3 id=\"they-become-withdrawn\"><span class=\"ez-toc-section\" id=\"They_Become_Withdrawn\"><\/span>They Become Withdrawn<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>This is easier to notice in a friendly gregarious employee because their new behavior is markedly different. With an introvert, it can be harder to notice this type of change. If someone is constantly radiating a desire to be left alone, there\u2019s something wrong.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Theyre_Unusually_Sensitive\"><\/span>They\u2019re Unusually Sensitive<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>If someone who usually handles constructive criticism productively begins to bristle and argue back, they may be feeling too frazzled to cope with even the gentlest guidance. Everyone can have an off day, but if they seem always to be in a heightened state of alert and looking for a fight, you need to investigate.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Steps_You_Can_Take\"><\/span>Steps You Can Take<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Depending on your circumstances, some or all these steps might help you minimize risks of disgruntled employees attacking your networks and data.<\/p>\n<ul>\n<li>Make compliance a part of everyday working practices. Require staff to sign a\u00a0<a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/en.wikipedia.org\/wiki\/Non-disclosure_agreement\">non-disclosure agreement<\/a>\u00a0(NDA) and introduce data protection and compliance as part of new recruits\u2019 induction processes.<\/li>\n<li>Policies and procedures that facilitate the resolution of employee grievances need to be created, implemented, and introduced carefully to the workforce.<\/li>\n<li>Implement a policy so staff members can raise concerns about the welfare of a colleague.<\/li>\n<li>Employees who exhibit any of the warning signs should be considered high risk. Employees who have had a negative experience at work, such as a refusal of leave, poor appraisal, disciplinary procedure, or unsuccessful bid for promotion, should also be considered a risk. Where possible assistance to identify and deal with the underlying issues should be offered.<\/li>\n<li>in some circumstances, tasks that involve sensitive data may justify a shadowed execution where two people effectively live audit one another as the task is performed. Perhaps shadowing is only warranted for high-risk employees.<\/li>\n<li>A staff monitoring system will allow you to track, log, and record user activity, and to create alerts to when suspicious activity is detected. Alerts are raised for such things as large data movements, copying data to external devices, emailing sensitive material, and trying to access restricted network resources.<\/li>\n<li>Use the <a rel=\"nofollow noopener noreferrer\" target=\"_blank\" href=\"https:\/\/en.wikipedia.org\/wiki\/Principle_of_least_privilege\">principle of least privilege<\/a>\u00a0to limit each employee\u2019s access to only the information that they need to perform their job, and that they are cleared for according to their risk status. Review who has what privileges regularly.<\/li>\n<li>Perform regular inventories and audits for computers, mobile devices, and removable media, such as external drives and USB memory sticks.<\/li>\n<li>Have a job leaver and role change procedure that adjusts access and privileges as required. For job leavers\u2014and especially for high-risk individuals\u2014consider making a forensic disk image of the hard drive in their computer before it is wiped and reissued to other staff. If you later suspect they have performed a malicious action, the hard drive image can be used to determine if it was done using their computer, from their account. The disk image might be admissible as legal evidence.<\/li>\n<\/ul>\n<\/div>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener noreferrer\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.cloudsavvyit.com\/7285\/the-disgruntled-employee-and-the-damage-they-can-do\/\" target=\"_blank\" rel=\"noopener noreferrer\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#The Disgruntled Employee and the Damage They Can Do \u2013 CloudSavvy IT&#8221; It\u2019s easy to think that cybersecurity is all about keeping the data in and keeping the bad guys out. But what about your staff? That body of people already inside your firewall, and allowed to connect to your network. What if one of&#8230;<\/p>\n","protected":false},"author":1,"featured_media":88940,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.cloudsavvyit.com\/p\/uploads\/2020\/10\/bcc1671f.png","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-88939","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/88939","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=88939"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/88939\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/88940"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=88939"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=88939"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=88939"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}