Skip to main content
HomeTopicsInsider Risk

Insider Risk

We've curated 96 cybersecurity statistics about Insider risk to help you understand how employee behaviors and unintentional mistakes are becoming critical threats in 2025. Explore how organizations are adapting their practices to mitigate these risks effectively.

Showing 21-40 of 96 results

The average annual cost of insider risk reached $19.5 million in 2025, up 20% over two years.

DTEX5/27/2026
Insider Risk Cost

Organizations took an average of 67 days to contain an insider incident, down from 86 days in 2023.

DTEX5/27/2026
Insider IncidentInsider Incident Containment

Organizations experienced an average of 25 insider incidents in 2025.

DTEX5/27/2026
Insider Incident

44% believe malicious use of AI agents will significantly or moderately increase data theft risk.

DTEX5/27/2026
Agentic AIData Theft Risk

More than 8.2 million phishing emails targeted VIPs in 2025, representing over a quarter of all phishing activity that year.

Darktrace5/27/2026
PhishingEmail Security

Only 13% of organizations have formally integrated AI into business strategies.

DTEX5/27/2026
AI Integration

63% of organizations now run a dedicated insider risk program.

DTEX5/27/2026
Insider Risk Program

58% of organizations attribute their most significant data loss events to careless employees or third-party contractors.

Proofpoint11/9/2025
Data lossInsider risk

When asked which egress channels for the outflow of sensitive data does your organization worry most about, 61% said personal cloud storage.

Fortinet10/16/2025
Insider riskEgress channel

When asked which egress channels for the outflow of sensitive data does your organization worry most about, 56% said Generative AI tools like ChatGPT.

Fortinet10/16/2025
Insider riskEgress channel

When asked which egress channels for the outflow of sensitive data does your organization worry most about, 47% said removable media/storage devices like USB drives.

Fortinet10/16/2025
Insider riskEgress channel

49% of organizations agree, and 23% strongly agree, that they lack visibility into how users interact with sensitive data across endpoints, cloud apps, and GenAI platforms.

Fortinet10/16/2025
Insider riskVisibility

When asked which egress channels for the outflow of sensitive data does your organization worry most about, 31% said screen captures.

Fortinet10/16/2025
Insider riskEgress channel

72% of organizations lack visibility into how users interact with sensitive data across endpoints, cloud apps, and GenAI platforms.

Fortinet10/16/2025
Insider riskVisibility

61% of security leaders are very concerned about credential compromise being used for insider activity over the next 12 months.

Fortinet10/16/2025
Insider riskCredential compromise

51% of organizations report operating at Maturity Level 2 (Implemented: tools are in place but fragmented across teams with limited integration).

Fortinet10/16/2025
Insider riskMaturity

46% say a lack of skilled staff is the biggest barrier to maturing their insider risk program.

Fortinet10/16/2025
Insider riskMaturity

42% say organizational silos (e.g., Security vs HR vs Legal) is the biggest barrier to maturing their insider risk program.

Fortinet10/16/2025
Insider riskMaturity

31% say maintenance burden is the biggest barrier to maturing their insider risk program.

Fortinet10/16/2025
Insider riskMaturity

23% say user pushback or fear of harming culture is the biggest barrier to maturing their insider risk program.

Fortinet10/16/2025
Insider riskMaturity