TaoSecurity Fascinating .gov and .mil Docs
Perhaps 'fascinating' is too strong a word, but I've come across several intriguing government reports and documents which security professionals might find interesting. First, the CERT/CC and the Secret Service released a joint report titled Insider Threat Study. It's based on '23 incidents carried out by 26 insiders in the banking and finance sector between 1996 and 2002. Organizations affected by insider activity in this sector include credit unions, banks, investment firms, credit bureaus, and other companies whose activities fall within this sector. Of the 23 incidents, 15 involved fraud, four involved theft of intellectual property, and four involved sabotage to the information system/network.' One of the incidents, mentioned in the beginning of the report, was the case prosecuted by the DoJ on behalf of UBS."
-------------
A great find by Richard Bejtlich. Documents for security pro's and CXO's who want to know more about real exploit incidents, prosecution, threats, and security posturing.
