You THINK your work is critical. The bad guys KNOW your work is critical.

Nov 14

Written By Spotstone

United States critical infrastructure has 16 sectors. All US Critical Infrastructure Sectors have been affected by insider events

Below is a glimpse of Insider incidents that have touched each and every US critical infrastructure sector. Whether or not your organization fits neatly into one of the 16 US Critical Infrastructure Sectors, you have assets worth protecting.

Discussions on funding or resources are inevitable; however, the upfront or continuing costs of mitigating insider risk cannot be fully understood without comparing to the cost of ignoring or poorly managing the risk.

To be clear, evidence makes clear the cost of action is significantly less than the cost of inaction.

Let's talk about what could happen, rather than what just happened.

CHEMICAL SECTOR

“Former Paint Manufacturing Chemist Pleads Guilty to Stealing Trade Secrets Valued up to $20 Million” (2009)

COMMERCIAL FACILITIES SECTOR

Disney Employee Manipulates Food Menu Systems (2024)

COMMUNICATIONS SECTOR

“Florida Telecommunications and Information Technology Worker Charged with Acting as Agent of PRC Government” (2012-2022)

CRITICAL MANUFACTURING SECTOR

“Chinese National Sentenced for Stealing Ford Trade Secrets” (2006-2007)

DAMS SECTOR

“The Cyber-Dam Break” (2013)

DEFENSE INDUSTRIAL BASE SECTOR

“Former Raytheon Engineer Sentenced for Exporting Sensitive Military Related Technology to China” (2019)

EMERGENCY SERVICES SECTOR

“Customs and Border Protection Officer Sentenced for Receiving Bribes to Allow Drug-Laden Vehicles and Unauthorized Immigrants to Enter the U.S.” (2024)

ENERGY SECTOR

“Siemens Energy, Inc. pleads guilty to stealing confidential competitor information in $104M resolution after former corporate executive and others were sentenced” (2019)

FINANCIAL SERVICES SECTOR

“Former hacker sentenced for stealing computer power to mine cryptocurrency and stealing the personal information of more than 100 million people” (2019)

FOOD AND AGRICULTURE SECTOR

“Chinese National Sentenced to Prison for Conspiracy to Steal Trade Secrets” (2007-2012)

GOVERNMENT SERVICES AND FACILITIES SECTOR

“Air National Guardsman Pleads Guilty to Unlawfully Disclosing Classified National Defense Information” (2022-2023)

HEALTHCARE AND PUBLIC HEALTH SECTOR

“Former Information Technology Employee Of Hospital Sentenced To 30 Months In Prison For Computer Intrusion” (2013-2018)

INFORMATION TECHNOLOGY SECTOR

“Former Uber Executive Sentenced To 18 Months In Jail For Trade Secret Theft From Google” (2016)

NUCLEAR REACTORS, MATERIALS, AND WASTE SECTOR

“Former U.S. Nuclear Regulatory Commission Employee Pleads Guilty to Attempted Spear-Phishing Cyber-Attack on Department of Energy Computers” (2013-2015)

TRANSPORTATION SYSTEMS SECTOR

“Former American Airlines Mechanic Sentenced to Prison for Attempting to Destroy an Aircraft” (2019)

WATER AND WASTEWATER SECTOR

“Tracy Resident Charged With Computer Attack On Discovery Bay Water Treatment Facility” (2021)

Spotstone http://www.spotstone.net

Technology is a Component of an Insider Risk Program. It’s not the Program.

SpotStone Speaking at NRMC’s 2024 Risk Summit

Carnegie Mellon University Software Engineering Institute Insider Threat Program Manager (ITPM)

CERTIFICATIONS

Counter-Insider Threat Professional Certification Seal

QNDJCVLUPS97
9JZS8
10-903-3114
541990 (Primary)
541519
541512
541618
611420
541690
541990
561611
611420

FOLLOW US

CAPABILITIES

Copyright © 2022-2025 SpotStone LLC
All Rights Reserved.