{"id":629923,"date":"2023-04-16T09:49:45","date_gmt":"2023-04-16T14:49:45","guid":{"rendered":"https:\/\/news.sellorbuyhomefast.com\/index.php\/2023\/04\/16\/how-mass-layoffs-can-create-new-risks-for-corporate-security\/"},"modified":"2023-04-16T09:49:45","modified_gmt":"2023-04-16T14:49:45","slug":"how-mass-layoffs-can-create-new-risks-for-corporate-security","status":"publish","type":"post","link":"https:\/\/newsycanuse.com\/index.php\/2023\/04\/16\/how-mass-layoffs-can-create-new-risks-for-corporate-security\/","title":{"rendered":"How mass layoffs can create new risks for corporate security"},"content":{"rendered":"<div id=\"boilerplate_2682874\">\n<p><em>Join top executives in San Francisco on July 11-12, to hear how leaders are integrating and optimizing AI investments for success<\/em>. <em><a href=\"https:\/\/avolio.swapcard.com\/Transform2023\/registrations\/Start?utm_source=vb&#038;utm_medium=boiler&#038;utm_content=landingpage&#038;utm_campaign=T23_BoilerPlates\">Learn More<\/a><\/em><\/p>\n<hr>\n<\/div>\n<p>As Meta faces backlash from its employees over its handling of mass layoffs, security experts warn that such actions can create new threats to corporate data and systems.<\/p>\n<p>Facebook\u2019s parent company Meta announced last week that it would cut 21,000 jobs, or about 10% of its global workforce, as part of a restructuring plan. The move <a href=\"https:\/\/nypost.com\/2023\/04\/13\/meta-faces-morale-crisis-as-top-execs-work-from-other-countries-during-layoffs-report\/\" target=\"_blank\" rel=\"noreferrer noopener\">sparked outrage<\/a> among some workers, who accused senior executives of being out of touch and insensitive to their plight.<\/p>\n<p>But Meta is not alone in resorting to layoffs amid economic uncertainty. A recent KPMG report found that 85% of organizations believe that layoffs will be necessary as the economy slows down.<\/p>\n<div><body><\/p>\n<div id=\"boilerplate_2803147\">\n<h3>Event<\/h3>\n<div>\n<p><span>Transform 2023<\/span><\/p>\n<div id=\"gm0a52976\">\n<p>Join us in San Francisco on July 11-12, where top executives will share how they have integrated and optimized AI investments for success and avoided common pitfalls.<\/p>\n<\/div>\n<\/div>\n<p><a href=\"https:\/\/avolio.swapcard.com\/Transform2023\/registrations\/Start?utm_source=vb&#038;utm_medium=incontent&#038;utm_content=landingpage&#038;utm_campaign=T23_incontent\"><br \/>\n                Register Now            <\/a>\n                        <\/p>\n<\/div>\n<p><\/body><\/p>\n<p>Such drastic measures can also expose companies to increased cybersecurity risks from disgruntled former employees, who may seek revenge or compensation by stealing or sabotaging sensitive data or systems.<\/p>\n<p>\u201cMass layoffs can result in the unintentional creation of insider threats,\u201d said Kyle Kappel, U.S. leader for cyber at <a href=\"http:\/\/kpmg.com\" target=\"_blank\" rel=\"noreferrer noopener\">KPMG<\/a> in an interview with VentureBeat. \u201cInsider threat risk includes theft of sensitive data, embezzlement, sabotage of critical systems, creation of backdoors into corporate environments or even causing reputational harm.\u201d\u00a0<\/p>\n<p>According to the <a href=\"https:\/\/www.paloaltonetworks.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">Palo Alto Networks<\/a> Unit 42 team, 75% of insider threat cases <a href=\"https:\/\/start.paloaltonetworks.com\/2022-unit42-incident-response-report\" target=\"_blank\" rel=\"noreferrer noopener\">involved<\/a> disgruntled ex-employees. Insider threat incidents include transferring protected data to personal accounts, transporting property to a competitor, or exploiting inside knowledge of employees to access privileged information.\u00a0<\/p>\n<h2 id=\"h-getting-to-grips-with-malicious-insiders\">Getting to grips with malicious insiders\u00a0<\/h2>\n<p>Controlling access to data assets is difficult when defending against external threat actors, but becomes much more challenging when dealing with an employee who not only has physical access to key data assets and resources, but firsthand knowledge of an organization\u2019s internal processes.\u00a0<\/p>\n<p>The moment an employee becomes dissatisfied or, in the Meta example, laid off, every app or service they had access to needs to be resecured in the event that the individual attempts to take revenge on the organization.\u00a0<\/p>\n<p>\u201cRemoval of access to systems and applications is critical during a mass layoff, and there are several unique challenges during these types of events,\u201d Kappel said. \u201cA common area that is overlooked is the removal of access to third-party applications.\u201d<\/p>\n<p>Kappel notes that access to third-party applications can be exploited not just to access critical data assets, but also to steal money.\u00a0<\/p>\n<h2 id=\"h-the-challenges-and-difficulties-of-offboarding\">The challenges and difficulties of offboarding\u00a0<\/h2>\n<p>Unfortunately for security teams, it\u2019s not always easy to identify what services an employee had access to, particularly when trying to offboard a high volume of staff at once.\u00a0<\/p>\n<p>\u201cWhen you\u2019re letting go of massive numbers of employees at once, things get very complicated,\u201d said Frank Price, CTO of third-party cyber-risk management vendor <a href=\"https:\/\/www.cybergrx.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">CyberGRX<\/a>.\u00a0<\/p>\n<p>\u201cGiven how interconnected we are these days, there are a lot of access and active sessions to inventory and properly manage in these moments. That one disgruntled engineer or salesperson who realizes they are still logged into <a href=\"https:\/\/venturebeat.com\/security\/open-source-code-is-everywhere-github-expands-security-tools-to-help-secure-it\/\">GitHub<\/a> or <a href=\"https:\/\/venturebeat.com\/data-infrastructure\/salesforce-breaks-data-barriers-for-healthcare-with-new-customer-360-innovations\/\">Salesforce<\/a> on their personal device can cause a lot of trouble,\u201d Price said.\u00a0<\/p>\n<p>The disparate nature of these applications can lead to security teams failing to revoke access to key applications from potentially disgruntled employees.\u00a0\u00a0<\/p>\n<p>As a result, organizations need to be proactive about understanding employee access privileges. One way to do this is by using an identity provider (IDP), a type of <a href=\"https:\/\/venturebeat.com\/security\/iam-isnt-cutting-it-spera-raises-10m-for-a-new-approach-to-identity-security\/\">identity and access management (IAM)<\/a> platform, which can centralize the management of user identity and authentication.\u00a0<\/p>\n<h2 id=\"h-introducing-phygital-attacks\">Introducing \u2018phygital\u2019 attacks\u00a0<\/h2>\n<p>At the same time, security leaders can\u2019t afford to overlook the risks presented by an employee\u2019s physical access to resources and equipment \u2014 what Will Plummer, former U.S. Army security expert and CSO at mail-screening technology provider <a href=\"https:\/\/www.raysecur.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">RaySecur<\/a>, refers to as \u201cphygital\u201d attacks \u2014 \u201cthe convergence of physical and cyber.\u201d\u00a0<\/p>\n<p>\u201cThese attacks exploit weaknesses in physical security to gain access to digital infrastructure. They represent a sort of modern day trojan horse strategy known as \u2018warshipping,\u2019\u201d Plummer said.\u00a0<\/p>\n<p>Plummer explained that a typical warshipping attack occurs when a user is asked to return work equipment by mail, and uses the opportunity to tamper with the equipment, such as installing a battery-powered microcomputer that either mines for data or searches for a network vulnerability.\u00a0<\/p>\n<p>Implementing endpoint or mobile device management and auditing equipment as its returned can help to minimize the risks of these types of attacks.\u00a0<\/p>\n<h2 id=\"h-other-ways-to-mitigate-insider-risk\">Other ways to mitigate insider risk\u00a0<\/h2>\n<p>While mitigating breaches caused by malicious insiders and ex-employees is easier said than done, organizations can mitigate the risk of data exposure by better monitoring and controlling data access as part of what Kappel calls an \u201cestablished insider threat program.\u201d\u00a0\u00a0<\/p>\n<p>In practice, that means monitoring user activity and access to resources in real time and post event to ensure that privileged users aren\u2019t engaging in any harmful activity, such as exfiltrating data or installing malware.\u00a0<\/p>\n<p>In addition, perhaps the most valuable defense that organizations have against threats from disgruntled ex-employees is <a href=\"https:\/\/www.forrester.com\/blogs\/practice-empathy-to-reduce-insider-risk\/\" target=\"_blank\" rel=\"noreferrer noopener\">empathy<\/a>.\u00a0<\/p>\n<p>Approaching layoffs with compassion, clearly communicating the reasons for cutbacks, and offering employees support in the form of a severance package can help reduce the chance of employees feeling betrayed and attempting to take revenge on the organization. Ultimately, if you want to avoid a morale crisis, invest in building morale.<\/p>\n<p><strong>VentureBeat&#8217;s mission<\/strong> is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. <a href=\"https:\/\/info.venturebeat.com\/website-preference-center.html?utm_source=VBsite&#038;utm_medium=bottomBoilerplate\" data-type=\"URL\" data-id=\"https:\/\/info.venturebeat.com\/website-preference-center.html\">Discover our Briefings.<\/a><\/p>\n<\/p><\/div>\n<p><a href=\"https:\/\/venturebeat.com\/security\/how-mass-layoffs-can-create-new-risks-for-corporate-security\/\" class=\"button purchase\" rel=\"nofollow noopener\" target=\"_blank\">Read More<\/a><br \/>\n Tim Keary<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Join top executives in San Francisco on July 11-12, to hear how leaders are integrating and optimizing AI investments for success. Learn More As Meta faces backlash from its employees over its handling of mass layoffs, security experts warn that such actions can create new threats to corporate data and systems.Facebook\u2019s parent company Meta announced<\/p>\n","protected":false},"author":1,"featured_media":629924,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2904,27291,46],"tags":[],"class_list":["post-629923","post","type-post","status-publish","format-standard","has-post-thumbnail","category-create","category-layoffs","category-technology"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/629923","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/comments?post=629923"}],"version-history":[{"count":0,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/629923\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media\/629924"}],"wp:attachment":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media?parent=629923"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/categories?post=629923"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/tags?post=629923"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}