An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases

February 2011 • Technical Note

Michael Hanley, Tyler Dean, Will Schroeder, Matt Houy, Randall F. Trzeciak, Joji Montelibano

In this report, the authors provide an overview of techniques used by malicious insiders to steal intellectual property.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2011-TN-006

DOI (Digital Object Identifier):

10.1184/R1/6571895.v1

Subjects

Insider ThreatInsider Threat

Abstract

Since 2001, the Insider Threat team at the Software Engineering Institute's CERT program has built an extensive library and comprehensive database containing more than 550 cases of insider crimes. More than 80 of those crimes involved theft of an organization's intellectual property by a malicious insider. These crimes can be particularly damaging to an organization because it is often difficult or impossible to recover from a loss of confidentiality. This report provides an overview of techniques employed by malicious insiders to steal intellectual property, including the types of assets targeted and the methods used to remove the information from a victim organization's control. The report closes with a brief discussion of mitigating factors and strategic items that an organization should consider when defending against insider attacks on intellectual property.

Download PDF

Cite This Report

SEI

Hanley, Michael; Dean, Tyler; Schroeder, Will; Houy, Matt; Trzeciak, Randall; & Montelibano, Joji. An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases. CMU/SEI-2011-TN-006. Software Engineering Institute, Carnegie Mellon University. 2011. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9807

IEEE

Hanley. Michael, Dean. Tyler, Schroeder. Will, Houy. Matt, Trzeciak. Randall, and Montelibano. Joji, "An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Note CMU/SEI-2011-TN-006, 2011. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9807

APA

Hanley, Michael., Dean, Tyler., Schroeder, Will., Houy, Matt., Trzeciak, Randall., & Montelibano, Joji. (2011). An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases (CMU/SEI-2011-TN-006). Retrieved June 05, 2023, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9807

CHI

Michael Hanley, Tyler Dean, Will Schroeder, Matt Houy, Randall Trzeciak, & Joji Montelibano. An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases (CMU/SEI-2011-TN-006). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2011. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9807

MLA

Hanley, Michael., Dean, Tyler., Schroeder, Will., Houy, Matt., Trzeciak, Randall., & Montelibano, Joji. 2011. An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases (Technical Report CMU/SEI-2011-TN-006). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9807

BibTex

@techreport{HanleyAnAnalysis2011,
title={An Analysis of Technical Observations in Insider Theft of Intellectual Property Cases},
author={Michael Hanley and Tyler Dean and Will Schroeder and Matt Houy and Randall Trzeciak and Joji Montelibano},
year={2011},
number={CMU/SEI-2011-TN-006},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9807} }

Ask a question about this Technical Note

Software Engineering Institute