{"id":4725,"date":"2026-03-06T02:37:03","date_gmt":"2026-03-06T02:37:03","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2026\/03\/06\/ai-driven-insider-risk-now-a-critical-business-threat-report-warns\/"},"modified":"2026-03-06T02:37:03","modified_gmt":"2026-03-06T02:37:03","slug":"ai-driven-insider-risk-now-a-critical-business-threat-report-warns","status":"publish","type":"post","link":"https:\/\/ft365.org\/index.php\/2026\/03\/06\/ai-driven-insider-risk-now-a-critical-business-threat-report-warns\/","title":{"rendered":"AI-Driven Insider Risk Now a \u201cCritical Business Threat,\u201d Report Warns"},"content":{"rendered":"<div>\n<p><img decoding=\"async\" src=\"https:\/\/ft365.org\/wp-content\/uploads\/2026\/01\/localimages\/cb531640-ce34-4e47-96c8-4a9f811ec92a.jpg?width=64&#038;height=64&#038;mode=crop&#038;scale=both&#038;format=webp\" alt=\"Photo of Danny  Palmer \" loading=\"lazy\"><\/p>\n<\/div>\n<div id=\"cphContent_pnlArticleBody\" data-layout-id=\"2\" data-edit-folder-name=\"text\" data-index=\"0\">\n<p>The risk of insider threats is on the rise and businesses are concerned about the cybersecurity implications of intentionally malicious or negligent employees, research by Mimecast has warned.<\/p>\n<p>According to the company\u2019s <em>State of Human Risk Report 2026<\/em>, internal cybersecurity risk has grown across the board, to the extent that it should be treated as a \u201ccritical business threat.\u201d<\/p>\n<p>In many cases, the additional insider risk is because of employees mishandling or actively abusing AI tools<\/p>\n<p>According to the report, cybersecurity leaders have concerns about the rise of AI in the workplace and the potential for large language models (LLMs) and other AI productivity tools to expand the potential attack surface which could be exploited by both external and internal threats.<\/p>\n<p>Over the past year, 42% of organizations have reported an increase in threats from malicious insiders, employees who want to actively cause harm to their employer by stealing, manipulating or destroying data.<\/p>\n<p>The same percentage (42%) reported a rise in cybersecurity incidents because of employee negligence.<\/p>\n<p>These are incidents which occur because of careless actions by the employee which could have easily been avoided, such as transferring data insecurely using personal cloud accounts, using weak passwords or opening malicious links in phishing emails.<\/p>\n<p>The report warns that that cyber attackers look to exploit this negligence \u2013 or indeed, actively malicious intent &#8211; to help gain access to accounts, files and systems and that the problem is growing.<\/p>\n<p>According to the paper, concerns about malicious insiders from information security leaders has grown by 10% in the last year and IT and cybersecurity leaders expect to face an average of six insider-driven threats a month.<\/p>\n<p>\u201cInsider risk has become one of the most consequential and underestimated threats facing organizations today, not just because of the data loss it causes, but because attackers are increasingly exploiting insiders as a deliberate entry point to bypass perimeter defenses entirely,\u201d\u00a0said Mimecast CISO Leslie Nielsen.\u00a0<\/p>\n<p>Attackers also deploy AI tools themselves, using them to help create more realistic, more effective phishing emails. Meanwhile, it\u2019s possible for malicious insiders to deploy AI tools to help them achieve their goals, for example, by searching for and exfiltrating files and data.<\/p>\n<p>\u201cAs AI makes it easier for insiders to exfiltrate data at scale, security must meet users at the point of risk,\u201d said Nielsen.<\/p>\n<p>The paper is based on research by Mimecast and Vanson Bourne which surveyed 2500 IT security anddecision makers across the world, including North America, Europe, Southeast Asia and Australia. Organization sizes ranged from 250 to over 10,000 employees.<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>The risk of insider threats is on the rise and businesses are concerned about the cybersecurity implications of intentionally malicious or negligent employees, research by Mimecast has warned. According to the company\u2019s State of Human Risk Report 2026, internal cybersecurity risk has grown across the board, to the extent that it should be treated as<\/p>\n","protected":false},"author":2,"featured_media":4726,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-4725","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized"],"featured_image_urls":{"full":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"thumbnail":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001-150x150.jpg",150,150,true],"medium":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"medium_large":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"large":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"1536x1536":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"2048x2048":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"morenews-featured":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"morenews-large":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"morenews-medium":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001.jpg",300,300,false],"crawlomatic_preview_image":["https:\/\/ft365.org\/wp-content\/uploads\/2026\/03\/4725-0c99dc31-89e5-4049-a3eb-3bb97ecd5001-146x146.jpg",146,146,true]},"author_info":{"display_name":"henry","author_link":"https:\/\/ft365.org\/index.php\/author\/henry\/"},"category_info":"<a href=\"https:\/\/ft365.org\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","_links":{"self":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/4725","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/comments?post=4725"}],"version-history":[{"count":0,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/posts\/4725\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media\/4726"}],"wp:attachment":[{"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/media?parent=4725"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/categories?post=4725"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ft365.org\/index.php\/wp-json\/wp\/v2\/tags?post=4725"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}