[1] The threat to the organization could also be through malicious software left running on its computer systems by former employees, a so-called logic bomb.
[3] The Threat Lab and Defense Personnel and Security Research Center (DOD PERSEREC) has also recently emerged as a national resource within the United States of America.
[6] According to the UK Information Commissioners Office, 90% of all breaches reported to them in 2019 were the result of mistakes made by end users.
The US Department of Defense Personnel Security Research Center published a report[11] that describes approaches for detecting insider threats.
[12] Cybersecurity experts believe that 38% of negligent insiders are victims of a phishing attack, whereby they receive an email that appears to come from a legitimate source such as a company.
[15] Adopting sociotechnical approaches, researchers have also argued for the need to consider insider threat from the perspective of social systems.