Cybersecurity risks related to insiders are now more common than those from external threat actors, claims cybersecurity vendor Netwrix in the 2020 Netwrix Cyber Threats Report.
This reveals that, since organisations went remote, four of the six most common cybersecurity incidents are caused by internal users: accidental mistakes by admins (suffered by 27% of respondents), accidental improper sharing of data by employees (26%), misconfiguration of cloud services (16%) and data theft by employees (14%).
More than three quarters (79%) of CIOs worry that users are now more likely to ignore IT policies and thus pose a greater threat to security.
The research also found that incidents relating to inside actors are among the hardest for organisations to detect. For example, a significant proportion of respondents took weeks or months to detect data theft by employees (26%), improper employee data sharing (18%) and admin mistakes (12%).