Is there any quantitative research that indicates whether insider or outsider-initiated cybersecurity events are more destructive? Or does the research, if it exists, show that there is no real difference between the two. I suspect the latter, but cannot find a definitive answer.
Dear Cobus Pool ,
In industrial cybersecurity internal or external control ought to be 24/7. The impact is defined only by resources allocated to the professional immediate effective AIs.
Look, for instance, at one of commercial Managed Security Service Providers (MSSP). MSSP aren't cheap, but it's cheaper than to maintain the same level of experience, tools, know-how, and do everything inside the house. A stingy one pays twice.
https://www.sophos.com/en-us/products/managed-threat-response/rapid-response.aspx?&cmp=100564&utm_campaign=GPD-2020-AMER-NA-Google-PaidSearch-NB-Rapid-Response-Cybersecurity-Incident-DG-100564&utm_medium=cpc&utm_content=NB-Cybersecurity-Incident&utm_term=%2Bcyber+%2Bsecurity+%2Bincident&utm_source=google-search&gclid=CjwKCAiAvriMBhAuEiwA8Cs5laNzbKtk6zP7N1u-9EkcMK0MHX5foRADheUPYuibXCerLWC7NV2MkBoCinYQAvD_BwE&gclsrc=aw.ds
Hi Dr Cobus Pool . See the following link: https://digitalguardian.com/blog/insider-outsider-data-security-threats
Also see the following link: https://www.sciencedirect.com/topics/computer-science/insider-attack
Kindly see also the following link: https://www.ekransystem.com/en/blog/insider-threat-definition