A Huntress threat hunter faces scrutiny for alerting a ransomware criminal about an active law enforcement probe, raising questions about judgment and insider threat protocols. The incident has sparked broader industry discussion about detecting and preventing employees from compromising security operations.
·Huntress CEO defends the threat hunter involved while acknowledging poor judgment in the communication with the cybercriminal
·MSSPs are positioning insider threat detection as a growing business opportunity as organizations grapple with employee risks
·Real-time detection systems and above-and-beyond protocols are emerging as industry standards for identifying compromised insiders
·Employment separations create lingering insider threat risks that organizations struggle to manage after workers leave
drawn from SC Media, MSSP Alert, The Register, Security Magazine · updated 7h ago