- 45% of IT security professionals see insider-driven data leakage as their biggest threat, surpassing external cyberattacks.
- 61% of organizations experienced insider-related file breaches in the past two years, with average losses of $2.7 million.
- Only 40% of companies can detect and respond to file-based threats within a day or a week.
- 27% use Data Loss Prevention tools, but experts stress layered defenses and a comprehensive security strategy are needed.
Insider cybersecurity threats, whether caused by disgruntled employees or simple negligence, are now considered a bigger danger to businesses than external cyberattacks, according to new research.
The OPSWAT Ponemon State of File Security Report, which surveyed 612 IT and security professionals in the U.S., revealed that 45% of respondents identified insider-driven data leakage as their biggest security concern. That figure eclipses the risk posed by external attackers.
The findings show just how widespread the problem has become. Nearly two-thirds (61%) of organizations reported suffering a breach or incident involving unauthorized access to sensitive files within the past two years.
And the impact is hitting companies hard. More than half of respondents (54%) said insider-related breaches damaged their bottom line, with the average cost of such incidents reaching $2.7 million. In some cases, losses climbed past $10 million.
Limited Visibility, Higher Risk
The report highlights a troubling lack of visibility into how files are being accessed, shared, and stored. Many organizations admitted they struggle to properly monitor file activity, leaving them blind to unauthorized behavior until it is too late.
That lack of oversight explains why only 40% of businesses said they could detect and respond to file-based threats within a day or even within a week.
Turning to DLP, but More is Needed
To counter the risk, some companies are deploying Data Loss Prevention (DLP) tools. Roughly 27% of organizations surveyed already use DLP, primarily to monitor files, enforce access controls, and flag suspicious actions.
However, researchers warn that relying on DLP alone will not solve the problem. A truly resilient security posture requires layered defenses and a comprehensive file security strategy.
With insider threats on the rise and the costs mounting, business leaders are being urged to take action before the next breach hits closer to home.
Follow TechBSB For More Updates
