The cost of cybersecurity threats caused by organization insiders rose over the course of 2023, according to a new report from the Ponemon Institute and DTEX Systems. Credit: gorodenkoff The potential monetary losses from security incidents caused by insider activity — purposeful or accidental — is sharply on the rise, as businesses continue to misunderstand the threat they pose. According to a report released today by AI-based risk management technology provider DTEX Systems in partnership with security research firm Ponemon Institute, companies are generally underfunding their insider risk programs, spending roughly $200 per employee on that type of security. The report, which was based on a survey of more than 1,000 IT and IT security decision-makers, found that that 58% of the respondents didn’t think that was enough money. The consequences of that underspending could be serious, according to the report. The total average cost of an insider risk rose from $15.4 million in 2022 to $16.2 million in 2023, while the average number of days required to contain a security threat that originated with an insider rose from 85 to 86 in the same time period. Ponemon classified insider threats into three categories. First, threats that arose because of malicious insiders looking to harm the company, like disgruntled employees. Second, threats that arose because an outside attacker “outsmarted” a vulnerable employee, who was taken in by a phishing scam or similar. Finally — in the most costly category — the report described negligent or mistaken insiders, who ignored warnings from security systems or misconfigured a system. More than half, or 55%, of money spent on insider incident response went toward problems caused by negligence or mistakes, compared to 20% for novel attacks that simply outsmarted business staff or IT workers, and 25% for those caused by actively malicious insiders. This means that security teams, the report’s authors asserted, could save a lot of money by focusing on detection and prevention, rather than being forced to spend their funding on remediation. In the final estimate, the study found that just 10% of insider-risk management budgets were spent on pre-incident outlays — roughly $64,000 per incident. The remaining $565,363 per incident went toward containment, remediation, investigation, incident response and escalation. “Funding is being inadvertently misdirected due in part to a widespread misunderstanding of insider risks and how they manifest based on early warning behaviors,” the report said. “A whole-of-industry approach is required to educate and find common ground on how we define and discuss insider risks with enterprise and government entities.” Related content news CISA, FBI urge developers to patch path traversal bugs before shipping The advisory highlights how developers can follow best practices to fix these vulnerabilities during production. By Shweta Sharma May 03, 2024 3 mins Vulnerabilities news Microsoft continues to add, shuffle security execs in the wake of security incidents The company has appointed new product security chiefs as well as a customer-facing CISO as it continues to respond to high-profile attacks on its products and own network. By Elizabeth Montalbano May 03, 2024 4 mins CSO and CISO feature Malware explained: How to prevent, detect and recover from it What are the types of malware? How does malware spread? How do you know if you’re infected? We've got answers. By Josh Fruhlinger May 03, 2024 18 mins Ransomware Phishing Malware brandpost Sponsored by Cyber NewsWire LayerX Security Raises $26M for its Browser Security Platform, Enabling Employees to Work Securely from Any Browser, Anywhere Early adoption by Fortune 100 companies worldwide, LayerX already secures more users than any other browser security solution and enables unmatched security, performance and experience By Cyber NewsWire May 02, 2024 4 mins Cyberattacks Security PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe