8 Surprising Statistics About Insider Threats

Insider theft and negligence is real--and so are the practices that amplify the risks.
Sixty-nine percent of enterprise security executives reported experiencing an attempted theft or corruption of data by inside
Sixty-two percent of business users report that they have access to company data that they probably should not see, according
Ponemon also reported that 43% of businesses need a month or longer to detect employees accessing files or emails they're not
Nearly a third of all organizations still have no capability to prevent or deter an insider incident or attack, according to
Digging further, survey respondents reported to SANS that only 9% of them rank their insider prevention methods as very effec
Forty-five percent of IT executives say malicious insider attacks is one of the email security risks they are most ill-prepar
In one study by Gartner that examined malicious insider incidents, 62% involved employees looking to establish a second strea
One Texas man who worked at Citibank was able to take down connectivity to approximately 90% of all Citibank networks in Nort

Even though insider threat events are typically much more infrequent than external attacks, they usually pose a much higher severity of risk for organizations when they do happen. Whether malicious or simply negligent, insiders need access to sensitive intellectual property and systems to do their jobs. As a result, when they break policy accidentally or choose to steal, their actions stand to do a tremendous amount of damage to a business. Here's how recent surveys and statistics measure perceptions about the risk posed by insider threats, along with some of the common shortfalls in IT security that unnecessarily expose organizations to higher insider risks.

Next slide
Recommended Reading: