That is a very creative way of describing the problem!
Review of: “The Danger From Within” by David M. Upton and Sadie Creese
In “The Danger From Within” by David M. Upton and Sadie Creese, the authors argue that internal attacks from insider threats are very common and much less appreciated than the cyber attacks that are prompted by external threats. Upton and Creese note that cyberattacks caused by insiders (such as employees, vendors, or anyone from any company that is connected to--or has access to--a firm’s computer system) are responsible for 20% of all cyberattacks (p. 5).
The authors argue that companies do not understand the magnitude of insider threats, nor do they take them seriously.
Additionally, the authors explain why and how insider threats are so pervasive and pernicious. They assert that there are three major reasons why insider threats have increased in the past few years. First, IT departments have increased in size and have become more intricate and complicated over time. Much of IT work is outsourced and there are not many mechanisms for accountability built into standard IT customer service departments. Second, employees using personal devices (anything from tablets and smartphones to flash drives) at work