TechNadu5d ago

US soldier sentenced for enabling North Korean IT worker fraud.
• Identity misuse in hiring pipelines
• Remote access via company laptops
• ~$1.3M generated
Trend: Insider-assisted infiltration rising.

Source: https://therecord.media/us-soldier-sentencer-for-helping-nk-it-workers

💬 Mitigation strategies?
🔔 Follow TechNadu

#Infosec #CyberSecurity #InsiderThreat

Niel Harper6d ago
'Is your biggest security threat already inside your castle?' - the definition of an "insider" has fundamentally changed. It’s not just about disgruntled employees; it’s about a complex web of social engineering, digital savviness, and agentic AI. https://nielharper.com/2026/03/23/is-your-biggest-security-risk-already-inside-your-castle #CyberSecurity #InsiderThreat #DigitalTrust #RiskManagement #AI #ZeroTrust #InfoSec
TechNaduMar 20

Insider threat case: ex-analyst used legitimate access to execute $2.5M extortion scheme.

Reinforces need for RBAC, DLP & behavior analytics.

https://www.technadu.com/ex-data-analyst-convicted-in-2-5m-brightly-software-extortion-scheme/623879/

#Infosec #InsiderThreat #CyberSecurity

Show threadkaito834Mar 18
ソニー生命、営業員が顧客から22億円借り12億円未返済 - 日本経済新聞 https://www.nikkei.com/article/DGXZQOUB185VZ0Y6A310C2000000/ #内部不正 #insiderthreat
記事によると、ソニー生命もプルデンシャル生命と同様に、フルコミッション(完全歩合)に近い報酬体系を採用しているという
ソニー生命、営業員が顧客から22億円借り12億円未返済 - 日本経済新聞

ソニー生命保険の元営業職員が顧客から約22億円を借り入れ、約12億円が返済されていないことが分かった。ソニー生命は2023年に事案を把握したものの、営業職員個人による金銭貸借として公表していなかった。会社による弁済はしない方針だ。元職員は横浜市の支社に所属していた。金銭の借り入れがあったのは15〜22年で、顧客や親族ら約100人に個人名義で借用書を作成し金銭を借りていた。23年

日本経済新聞
kaito834Mar 18

ソニー生命 元社員が顧客やその親族から22億円近くを借り入れ https://news.web.nhk/newsweb/na/na-k10015078981000 #内部不正 #insiderthreat

顧客からの問い合わせからの調査で発覚。当該社員を3年前に懲戒免職処分。会社は返済しない
「...数人の社員が顧客などから個人的な借金をしていたと申し出ている...」

{"@value" => "ソニー生命 元社員が顧客やその親族から22億円近くを借り入れ", "@language" => "ja"}

{"@value" => "ソニー生命の営業担当だった社員が保険の営業とは関係なく顧客やその親族から22億円近くを借り入れ、およそ半分が今も返済されていないことがわかりました。プルデンシャル生命でも顧客から借金をしていた事例が発", "@language" => "ja"}

NHKニュース
Nick EspinosaMar 14

Rogue AI is Exploiting "Every" Vulnerability. Welcome to the evolution of insider threat.

#News #TechNews #AI #RogueAI #InsiderThreat #Training #AcceptableUse

https://youtu.be/yZnz93k2z0k?source=whatever

Rogue AI is Exploiting "Every" Vulnerability

YouTube
Nick EspinosaMar 14

Daily Podcast: Rogue AI is Exploiting "Every" Vulnerability. Welcome to the evolution of insider threat.

#News #TechNews #AI #RogueAI #InsiderThreat #Training #AcceptableUse #podcast

https://soundcloud.com/nickaesp/aev?source=whatever

Rogue AI is Exploiting "Every" Vulnerability

Welcome to the evolution of insider threat.

SoundCloud
TechNaduMar 12

DOJ has charged a former incident response employee in connection with alleged ransomware extortion activity linked to ALPHV (BlackCat).
The case highlights serious insider threat risks within cybersecurity environments.

https://www.technadu.com/former-employee-of-cybersecurity-companies-charged-in-alphv-blackcat-ransomware-extortion-case/623198/

#Cybersecurity #Ransomware #InsiderThreat #Infosec

DefensorumMar 11
🚨 Former Nuance employee pleads guilty to accessing 1.2M Geisinger patient records 🔒Employee exploited existing credentials after termination 📊 Names, birth dates, medical record numbers copied #InsiderThreat #Healthcare #DataTheft 👉 https://www.defensorum.com/nuance-employee-unauthorized-access-geisinger-patient-records/
Former Nuance Employee Pleads Guilty to Unauthorized Access of Geisinger Patient Records - Defensorum

A former Nuance Communications employee pleaded guilty in federal court to obtaining information from a protected computer without authorization after accessing and copying data associated with more than 1.2 million Geisinger Health System patient records. Guilty Plea in Federal Court Max Vance, 46, of El Cajon, California, entered a guilty plea on February 27, 2026 ... Read more

Defensorum
TechNaduMar 11

🚨 Alleged insider breach under investigation.
A former DOGE engineer is accused of copying SSA databases containing sensitive records of millions of individuals, including SSNs and birth data.

The case highlights serious access control and insider threat risks.
https://www.technadu.com/former-doge-employee-accused-of-social-security-data-theft-affecting-500-million-americans/623057/

#Cybersecurity #InsiderThreat #DataBreach #Infosec