The most costly data breaches are usually those that are created by a malicious insider. These people normally have access to things external hackers generally don’t have access to, like intellectual property, which in turn allows them to get into areas only known to them and to have additional insight as to the areas most vulnerable to attacks.
Company insiders, not outside hackers, are involved in more than two-thirds of all cyber cases involving theft of intellectual property. Moreover, when there is intentional and malicious destruction of data, a corporate insider is frequently responsible. Whether driven by opportunism, greed, a desire for revenge, or a combination of all three, these insiders exploit their positions of trust to obtain access to their organization’s most valued digital assets. Moles, opportunists, contractors, disgruntled employees, and ex-IT personnel—all currently pose a greater risk to corporate intellectual property than state-sponsored hacking and APTs, both in frequency and in damage caused.