Cyber-sabotage

UNDER CONSTRUCTION

Cyber-sabotage

dictionary-term

Alternative Forms

  • IT Sabotage

  • Sabotage

Definitions

Definition 1

Cyber-sabotage: complete version 1 and submit to community Slack thread for feedback.

Definition

Cyber-sabotage may designate two distinct classes of object:

  • The risk of cyber-sabotage,

  • An unsuccessful attempt

  • A cyber-sabotage incident.

A cyber-sabotage incident is a specialized form of insider threat incident (e.g.: sabotage represented 27% of insider attacks in https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1629061596). Its distinctive characteristics are:

Underreporting and statistics

Cyber-sabotage incidents - as for insider threat incidents in general - tend to be underreported to authorities by organizations because organizations have strong incentives to limit reputation harm by avoiding publicity on the event and chances of obtaining reparation are low (https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1629061596).

For these reasons, statistics should be considered from a critical perspective. Statistics provided in this article are extracted from the studies referenced in the bibliographic section. These studies have several limitations (geographic location, underreporting, etc.). The statistics in this article are provided in parenthesis with the mention “e.g.” to stress these limitations.

Personal predispositions of saboteurs

Most saboteurs had personal predispositions https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1628996151, including:

  • Serious mental health disorders.

  • Social skill difficulties and decision-making biases.

  • A history of rule violations.

Distinctive characteristics of saboteurs

Saboteurs motivations

Behavioral precursors

For general insider attacks, the insider’s planning behavior is noticeable in a number of cases (e.g.: 31% in https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1629061596). More specifically for IT saboteurs, behavioral incidents seem to come to the attention of supervisors or co-workers before the sabotage takes place in a high number of cases (97% in https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1628996151). Such incidents comprise:

  • Conflicts with co-workers, aggressive or violent behavior, mood swings, sexual harassment.

  • Poor job performance.

  • Deception about qualifications.

  • Absence or tardiness. Violations of explicit organizational policies and rules. Inappropriate purchases on company accounts. Violations of dress code, poor hygiene. Drug abuse.

Technical precursors

Precipitating events and contributing factors

Vulnerabilities

Consequences

Countermeasures

Paradigmatic Examples

Entourage and possibility of early detection:

Distinguished characteristics of incidents:

Sample Sentences

Eve was enraged when, following her cloud migration project’s failure, her manager Bob told her she would receive a disciplinary sanction for her poor performance. Filled with bitterness, she coded a time bomb to wreck havoc on the corporate IT network. At that moment she didn’t realize that this cyber-sabotage would lead her to serve 3 years sentence in prison.

Conceptual Diagram

 

Related Terms

Quotes

Filter by label

There are no items with the selected labels at this time.

Bibliography

https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1452015631

https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1452048558

https://open-measure.atlassian.net/wiki/spaces/BIB/pages/1628996151/Moore%2Bet%2Bal.%2B2008

See Also


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.