FOR IMMEDIATE RELEASE
April 5, 2008

SEI Media Relations
Tel: 412-268-4793
E-mail: public-relations@sei.cmu.edu

Carnegie Mellon Software Engineering Institute CERT Researchers to Present Insider Threat Trends at RSA Conference 2008

On Wednesday, April 9, 2008, Carnegie Mellon® Software Engineering Institute CERT researchers Dawn Cappelli and Andrew Moore will cover insider threat trends and patterns based detailed analysis of over 250 actual cases of insider threat. Until now, Cappelli and Moore had focused their research on insider IT sabotage; however insider theft of confidential and sensitive information such as social security numbers, credit card numbers, and personally identifiable information and industrial espionage are of great concern to industry and government. Cappelli and Moore will present CERT research findings for the first time regarding those types of crimes and answering the questions: what was the motivation, how did insiders carry out the crimes, what technical means did they use, and how could they have been prevented from carrying them out.

Both individuals will be periodically available at the Software Engineering Institute/CERT (booth number 1862) throughout the conference.

Session Title:	Risk Mitigation Strategies - Lessons Learned from Actual Insider Attacks (DEF-203)
Date/Time:	Wednesday, April 9 at 10:40 a.m. PST
Location:	Red Room 305

For more information about the RSA Conference, please visit http://www.rsaconference.com/.

About the Carnegie Mellon Software Engineering Institute CERT Program
The CERT Program is part of the Carnegie Mellon Software Engineering Institute (SEI), a federally funded research and development center sponsored by the U.S. Department of Defense. CERT is a center of enterprise and network security research, analysis, and training within the SEI. For more information, visit the CERT Web site at www.cert.org and the SEI Web site at www.sei.cmu.edu.

# # #