The incidence of cyber-related insider threats reached its highest quarterly level yet in the third quarter, a report says.
Insider threats accounted for nearly 35% of all unauthorized access incidents in the third quarter of the year, compared with 24% in the second quarter and 31% in the first, according to the report by New York-based Kroll Inc., based on its incident response data.
This risk “is particularly high during the employee termination process,” the report said. Disgruntled employees may seek to undermine an organization, while others do so to use as leverage in their new organizations, it said.
The report said email compromise among popular types of threat incidents leveled off to 30% of the total in the third quarter, the same percentage as in the second quarter, while ransomware attacks fell to 25% of the total in the third quarter from 33% in the other one.
The report said among threat actors targeting credentials for initial access, phishing incidents increased 55% in the quarter, compared to 42% in the second quarter.
Kroll handles more than 3,000 cyber incidents annually, according to a spokeswoman.