{"id":43922,"date":"2026-02-25T08:10:00","date_gmt":"2026-02-25T00:10:00","guid":{"rendered":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/02\/25\/cost-of-insider-incidents-surges-20-to-nearly-20m-infosecurity-magazine\/"},"modified":"2026-02-25T08:10:00","modified_gmt":"2026-02-25T00:10:00","slug":"cost-of-insider-incidents-surges-20-to-nearly-20m-infosecurity-magazine","status":"publish","type":"post","link":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/2026\/02\/25\/cost-of-insider-incidents-surges-20-to-nearly-20m-infosecurity-magazine\/","title":{"rendered":"Cost of Insider Incidents Surges 20% to Nearly $20m &#8211; Infosecurity Magazine"},"content":{"rendered":"<p>Employee negligence driven by <a href=\"https:\/\/www.infosecurity-magazine.com\/news-features\/shadow-ai-governance-cisos\/\" target=\"_self\">shadow AI<\/a> cost organizations more than any other type of insider risk last year, accounting for 53% of the $19.5m lost on average per business, according to DTEX.<\/p>\n<p>The security vendor&rsquo;s <em>Cost of Insider Risks 2026 <\/em>report was produced by the Ponemon Institute and based on interviews with 8750 IT and security practitioners in 354 global organizations.<\/p>\n<p>Malicious incidents such as sabotage, data theft, fraud and unauthorized disclosure accounted for 27% ($4.7m) of the total lost to insider risks last year, DTEX claimed.<\/p>\n<p>That pales in comparison to negligence (e.g. ignoring IT warnings) and mistakes (e.g. accidentally &ldquo;pressing the wrong button&rdquo;), which amounted to an average of $10.3m in losses per company.<\/p>\n<p>A third category of &ldquo;outsmarted&rdquo; employees refers to those that may have been phished. This&nbsp;accounted for the smallest share of losses: 20% or $4.5m.<\/p>\n<p>In total, the report catalogued 7490 incidents and recorded a 20% increase in insider-related losses since 2023.<\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/foreign-interference-record-ip\/\" target=\"_blank\"><em>Read more on insider threats: Foreign Interference Drives Record Surge in IP Theft.<\/em><\/a><\/p>\n<p>Costs related to employee negligence have risen 17% year-on-year, the report found. The main causes were the use of personal webmail, file sharing sites and shadow AI.<\/p>\n<p>Although 73% of respondents are worried that undocumented AI use is creating invisible data loss pathways, just 13% have formally adopted AI technology into their business strategy. Only 18% have fully integrated AI governance policies into their insider risk management program.<\/p>\n<h2>The Shadow AI Threat<\/h2>\n<p>The report pointed to several risks associated with shadow AI:<\/p>\n<ul>\n<li>The inputting of internal documents into public models like ChatGPT<\/li>\n<li>AI notetakers producing publicly accessible recordings and summaries containing sensitive internal discussions and PII<\/li>\n<li>AI browsers that enable access to malicious sites, AI-assisted torrenting, and NSFW content generation<\/li>\n<li>AI browsers and agents accessing corporate systems, performing tasks, and bypassing traditional controls and logging<\/li>\n<\/ul>\n<p>Blocking AI tools merely encourages staff to use other ones, the report warned.<\/p>\n<p>AI agents are seen as particularly problematic. Over two-fifths (44%) of respondents said that malicious use of agents will &ldquo;significantly&rdquo; or &ldquo;moderately&rdquo; increase data theft risks, but only 19% classify AI agents as equivalent to human insiders.<\/p>\n<h2><strong>Improvements Being Made<\/strong><\/h2>\n<p>However, agents can also be part of the solution. A fifth (19%) of respondents said they&rsquo;ve deployed AI agents in daily workflows, and 71% rate them important or extremely important for early insider risk detection.<\/p>\n<p>Behavioral analysis was cited as important or essential by 71% of responding organizations.<\/p>\n<p>This is part of the reason why organizations took an average of 67 days to contain an insider incident, down from 86 days.<\/p>\n<p>DTEX <a href=\"https:\/\/ponemon.dtex.ai\/\" target=\"_blank\">urged <\/a>CISOs to &ldquo;double down on what works&rdquo;:<\/p>\n<ul>\n<li>Behavioral intelligence to highly &ldquo;early, non-obvious risk signals&rdquo; before incidents can escalate<\/li>\n<li>Identity-centric security for humans, service accounts and AI agents<\/li>\n<li>Defensive AI that improves precision, reduces false positives, and enables risk-aware prevention at scale<\/li>\n<li>Governance and data classification to close AI-driven exposure gaps<\/li>\n<li>A mindset shift from &ldquo;human-only risk&rdquo; to &ldquo;human-plus-machine risk,&rdquo; treating AI as an &ldquo;operational insider<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Employee negligence driven by shadow AI cost organizati [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-43922","post","type-post","status-publish","format-standard","hentry","category--infosecurity-magazine"],"_links":{"self":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/posts\/43922","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/comments?post=43922"}],"version-history":[{"count":0,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/posts\/43922\/revisions"}],"wp:attachment":[{"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/media?parent=43922"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/categories?post=43922"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nuoya.nuoyayasuo.top\/index.php\/wp-json\/wp\/v2\/tags?post=43922"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}