In January 2008, it was disclosed that an employee at this financial company conspired with third parties to provide both customer and administrator access credentials to their IT systems. This permitted the third parties to access confidential customer details and use this information to market their own loan products.
By sharing these credentials the employee demonstrated complete disregard for his company and customers. For his efforts, the employee commanded a fraction of the revenue cheated from his company.
The employee’s actions were unacceptable both morally and legally but the case called into question the scope of existing legislation to deal with cyber security threats caused by insiders.
Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:
We've done the analysis so you can make the decisions