Insider Threat

Insider Threat represents a threat to the systems and protected data of an organization that emanates from the people within the organization or trusted third parties.

 

In this context, insiders can be current or former employees, as well as current or former contractors/vendors/etc. By leveraging legitimate permissions they have been granted to access certain systems to complete their job functions, malicious insiders are often more difficult to detect and can cause more damage compared to external threat actors.  Insider threats can be intentional (sabotage, IP theft, espionage and fraud) or unintentional (human error, bad judgment, phishing, malware, unintentional aiding and abetting, stolen credentials).

 

Seeking Clarity?

View the Cybersecurity Dictionary for top terms searched by your peers.