A recent report by Kroll revealed that insider threats are proving to be the most concerning cybersecurity issue for companies, with professional services being hit the hardest. The report, which also highlighted a decline in ransomware incidents, pointed out that insider threats accounted for 23% of incidents, with financial services and technology and telecom sectors following closely behind.
According to the report, technology and telecom sectors were most likely to experience insider threats due to the nature of their operations. With multiple downstream customers, insiders with access to multiple technology providers could potentially carry out malicious activities that could lead to supply chain attacks. In fact, the report stated that 90% of insider threat incidents were intentional and malicious, signaling the importance of not overlooking this type of threat.
The decrease in ransomware incidents, from 23% to 16% in the previous quarter, was attributed to law enforcement takedowns of ransomware-as-a-service organizations such as LockBit and BlackCat. This decline in ransomware incidents may provide some relief to companies that have been increasingly targeted by such attacks in recent years.
While ransomware incidents may have seen a decline, the report emphasized that insider threats are a significant concern that companies cannot afford to ignore. The potential for insiders to carry out malicious activities that could have far-reaching consequences underscores the need for organizations to prioritize insider threat detection and prevention measures.
The report also highlighted the sectors most vulnerable to insider threats, with professional services at the top of the list. This sector, which accounted for 23% of insider threat incidents, serves as a clear indication of the challenges faced by companies in safeguarding their sensitive information from internal threats.
In conclusion, the Kroll report paints a concerning picture of the cybersecurity landscape, with insider threats taking center stage as the most pressing issue for companies across various sectors. As organizations continue to navigate the complex cybersecurity threats facing them, addressing insider threats should be a top priority to ensure the safety and security of their data and operations.