• Home
  • Latest
  • Fortune 500
  • Finance
  • Tech
  • Leadership
  • Lifestyle
  • Rankings
  • Multimedia

Trendingnow

1

As Big Tech showers employees with perks to win the talent war, Nvidia built a nearly $5 trillion company by making people pay for their own lunch

2

MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year

3

Current price of oil as of July 1, 2026

1

As Big Tech showers employees with perks to win the talent war, Nvidia built a nearly $5 trillion company by making people pay for their own lunch

2

MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year

3

Current price of oil as of July 1, 2026
Brainstorm Tech

Three types of cybersecurity threats (and two employees) to worry about most

Andrew Nusca
By
Andrew Nusca
Andrew Nusca
Editorial Director, Brainstorm; author, Fortune Tech
Down Arrow Button Icon
Andrew Nusca
By
Andrew Nusca
Andrew Nusca
Editorial Director, Brainstorm; author, Fortune Tech
Down Arrow Button Icon
July 16, 2014, 3:28 PM ET
Left to right: Michael Schrage, Sloan School, MIT; Stephen Gillett, COO, Symantec; Dan Kaufman, Director of the Information Innovation Office, DARPA; Christy Wyatt, CEO, Good Technology.
Left to right: Michael Schrage, Sloan School, MIT; Stephen Gillett, COO, Symantec; Dan Kaufman, Director of the Information Innovation Office, DARPA; Christy Wyatt, CEO, Good Technology.Stuart Isett/Fortune Brainstorm TECH
Add Fortune on Google for similar content.

ASPEN, Colo.—For corporations, the cybersecurity landscape has changed. The threats are coming from new places. They’re aiming at different targets. The executives tasked with stopping them? The strategies—internally and externally—are evolving.

At the Fortune Brainstorm Tech conference on Wednesday, executives from Symantec (SYMC), Good Technology, and DARPA—the U.S. Department of Defense’s research arm—explored (in sobering detail) how to identify and defend against today’s threats.

“The landscape has changed,” said Stephen Gillett, Symantec’s chief operating officer. “It used to be we had a perimeter we need to defend against the perimeter. Now the active opponents, as we call them—they’re usually much more organized, much more funded. They’re tiered by incentives.”

There are three types of threats, Gillett said.

“You have the young student—we call them ‘script kiddies.’ They want to hack their alumni website, and they want notoriety,” he said. “Then you have digital arms of organized crime. They have org designs, journeymen charts, pay scales. People make a career out of that. Their incentive is primarily economic: they want money, they want access to cash. Then you have what is ultimately the most dangerous and sophisticated [group], which is not in it for notoriety, not in it for economics, and that’s state-sponsored. It’s very sophisticated. It’s probably the second-most talked about topic in [Washington] D.C. in terms of its threat.”

What’s truly scary is that many employees don’t understand how much they are at risk, said Christy Wyatt, chief executive at Good Technology.

“The question is not who is the enemy, the question is where are the vulnerabilities?” she said. It’s more likely that an employee doesn’t realize the value of the data access they have, even if they’re a low-profile employee. “It’s figuring out the weak links,” she said.

Ditto executives, who underestimate how much their companies are at risk.

“A number of companies that I speak to say, ‘I don’t know that what we have all that much that’s valuable’ or the end users that say, ‘I’m an admin or I’m a controller or I’m in marketing, what do I possibly have? It’s not like I’m filing patents.’ ” Wyatt said. “The path in is probably not as obvious as you’re carrying around top secret information on your device. It’s that’s a stepping stone to the next point where they can kind of get into the network and start to do the really naughty things when they get in.”

And they’ve been doing that at an increasing rate. A number of Fortune 500 companies, such as Target (TGT), have experienced major breaches this year. Others, such as Starbucks (SBUX), discovered vulnerabilities that left personal data at risk.

Senior executives may not be aware of the weakest link in their organization, Gillett said.

“One of the big retailers was compromised through the heating and ventilation contractor,” he said. “So the subcontractor would come in—no matter how much that big retailer had purchased in terms of security, point solutions, network gateways, devices, encryption—the lowest common-denominator was a heating and ventilation cooling technician who had access.”

He added: “That’s where the bad guys are going. They’re not going after the COO or the CEO. In 2013, we saw that they’re going after the PR—the person traveling with [the senior executive]—and the administrative assistant. We’re relatively hardened as executives, but our PR and our assistant are not.”

So how to defend against all this? Dan Kaufman, the director of DARPA’s Information Innovation Office, said that companies need to rethink the way they approach security.

“People are always searching for the silver bullet. I don’t think it exists,” he said. “There’s a speed and a need to adapt that’s often much faster than corporate policy can do.”

Worse, corporations often try to put the burden on the user, requiring multiple pass phrases or elaborate access flows. That’s not sustainable, Kaufman said. “I actually think it falls on us as technologists. I think that has to be invisible to the user. I think we need to build devices in an intelligent manner so that you use them the way you want to use them and we’ll do the protection.”

He added: “Machine learning will play a much, much larger role. The scope of this is so large, the idea of a person at a keyboard defending your network is extremely antiquated.”

It all rolls up to the chief security officer (CSO) or chief information security officer (CISO), who needs to work differently with his peers to counter these threats, the panelists said.

“They’re increasingly having to step up their game and truly be the security thought leader, and the partner for their CEOs and their boards,” Gillett said. “You see chief security officers and chief information security officers moving out of the office of the CIO and reporting to CEOs. But that comes with responsibility.”

Wyatt concurred. “There are so many conflicting voices in the enterprise today: the users want one thing, the CISO wants something else, line of businesses in the middle, board of directors is being held accountable,” she said. “It’s not so much that they don’t know, it’s being able to sort of travel the path to get what they need.”

The days of the CISO telling employees that they can’t use a certain device or have access to certain data are over, she added. Today, employees know how to access the data anyway, or they’ll move it to the cloud. There’s a balance that a security officer must strike, and it needs to align with—not slow—a company’s normal operations, Wyatt said.

“It’s a business requirement that’s going to drive value for the business,” she said. “The CISO has to find some way to get comfortable with the risk that that opens up.”

[youtube https://www.youtube.com/watch?v=TEl1qXYK0z0]

Correction, July 17, 2014: An earlier version of this article incorrectly stated that Starbucks experienced a “major breach.” The company instead found (and fixed) a vulnerability in its mobile application. “No customer data was stolen whatsoever,” said Linda Mills, a company spokeswoman.

About the Author
Andrew Nusca
By Andrew NuscaEditorial Director, Brainstorm; author, Fortune Tech
Instagram iconLinkedIn iconTwitter icon

Andrew Nusca is the editorial director of Brainstorm, Fortune's innovation-obsessed community and event series. He also authors Fortune Tech, Fortune’s flagship tech newsletter.

See full bioRight Arrow Button Icon
Add Fortune on Google for similar content.

Latest in

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025

Most Popular

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Fortune Secondary Logo
Rankings
  • 100 Best Companies
  • Fortune 500
  • Global 500
  • Fortune 500 Europe
  • Most Powerful Women
  • World's Most Admired Companies
  • See All Rankings
  • Lists Calendar
Sections
  • Finance
  • Fortune Crypto
  • Features
  • Leadership
  • Health
  • Commentary
  • Success
  • Retail
  • Mpw
  • Tech
  • Lifestyle
  • CEO Initiative
  • Asia
  • Politics
  • Conferences
  • Europe
  • Newsletters
  • Personal Finance
  • Environment
  • Magazine
  • Education
Customer Support
  • Frequently Asked Questions
  • Customer Service Portal
  • Privacy Policy
  • Terms Of Use
  • Single Issues For Purchase
  • International Print
Commercial Services
  • Advertising
  • Fortune Brand Studio
  • Fortune Analytics
  • Fortune Conferences
  • Business Development
  • Group Subscriptions
About Us
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • Facebook icon
  • Twitter icon
  • LinkedIn icon
  • Instagram icon
  • Pinterest icon

Latest in

Best private student loans for medical school
Personal Financestudent loans and debt
Best private student loans for medical school
By Joseph HostetlerJuly 2, 2026
3 hours ago
Michael Burry just shorted Caterpillar’s 172% AI rally. One analyst says his bet won’t even matter
Investingstock prices
Michael Burry just shorted Caterpillar’s 172% AI rally. One analyst says his bet won’t even matter
By Marco Quiroz-GutierrezJuly 2, 2026
4 hours ago
Opti-Greens 50 Review (2026): Insights from Hands-On Testing
HealthDietary Supplements
Opti-Greens 50 Review (2026): Insights from Hands-On Testing
By Christina SnyderJuly 2, 2026
4 hours ago
U.S. Treasury Secretary Scott Bessent
EconomyDebt
AI’s $2.2 trillion deficit fix is already half fake, economists say
By Tristan BoveJuly 2, 2026
5 hours ago
s
Personal FinanceSports
The sports economy is unaffordable at the bar, let alone the stadium
By Catherina GioinoJuly 2, 2026
5 hours ago
m
Politicsfraud
Trump fights fraud by freezing funding for New York’s Medicaid Fraud Control Unit
By Ali Swenson, Geoff Mulvihill and The Associated PressJuly 2, 2026
5 hours ago

Most Popular

As Big Tech showers employees with perks to win the talent war, Nvidia built a nearly $5 trillion company by making people pay for their own lunch
Big Tech
As Big Tech showers employees with perks to win the talent war, Nvidia built a nearly $5 trillion company by making people pay for their own lunch
By Marco Quiroz-GutierrezJuly 1, 2026
2 days ago
MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year
Success
MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year
By Sydney LakeJune 25, 2026
8 days ago
Current price of oil as of July 1, 2026
Personal Finance
Current price of oil as of July 1, 2026
By Joseph HostetlerJuly 1, 2026
1 day ago
Today, Emily Blunt is worth $80 million thanks to her Hollywood career—but she actually wanted to be a UN Spanish translator on $80K
Success
Today, Emily Blunt is worth $80 million thanks to her Hollywood career—but she actually wanted to be a UN Spanish translator on $80K
By Orianna Rosa RoyleJuly 2, 2026
17 hours ago
Trump got a $78K pension from the Screen Actors Guild in 2025 because he appeared in Home Alone 2 in 1992
Politics
Trump got a $78K pension from the Screen Actors Guild in 2025 because he appeared in Home Alone 2 in 1992
By Sasha RogelbergJuly 1, 2026
1 day ago
Philanthropy leader at Warren Buffett and Bill Gates’ Giving Pledge says children of billionaires are pushing them to give their wealth away faster
Success
Philanthropy leader at Warren Buffett and Bill Gates’ Giving Pledge says children of billionaires are pushing them to give their wealth away faster
By Preston ForeJune 27, 2026
6 days ago

© 2026 Fortune Media IP Limited. All Rights Reserved. Use of this site constitutes acceptance of our Terms of Use and Privacy Policy | CA Notice at Collection and Privacy Notice | Do Not Sell/Share My Personal Information
FORTUNE is a trademark of Fortune Media IP Limited, registered in the U.S. and other countries. FORTUNE may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.