Tag: insider threat
28 articles

Huntress Insider Threat Exposed in Ransomware Probe Leak
A Huntress insider reportedly made a grave mistake, casually disclosing to a cybercriminal that law enforcement was on their tail - a moment of poor judgment that fell short of the company's high standards. The alarming exchange was part of a larger pattern of questionable communication uncovered between the currently employed threat hunter and the threat actor.

Huntress Insider Leak Exposes Potential Security Breach
A shocking security breach at Huntress has come to light, with a former analyst claiming that a colleague may have compromised the company's integrity by passing sensitive law enforcement communications to a notorious cybercriminal. The explosive allegations have left many questions unanswered about the breach and its potential impact.

Former IT Employee Sabotages School District with Prolonged Cyberattack
A former IT employee waged a relentless cyberwar against his old employer, the Saydel Community School District, launching a devastating 21-month attack that crippled the district's systems and disrupted classrooms. The attacks began just days after he left his job, with the deletion of the district's Facebook account, and continued with repeated intrusions into critical services.

Disgruntled IT worker sabotages school district systems, jailed 21 months
A disgruntled IT worker wreaked havoc on a school district's systems for over a year and a half, causing chaos and destruction, after being terminated from his job. The sabotage spree, which included deleting crucial data and altering systems, earned him a 21-month jail sentence.

Inactive User Account Enables Hackers to Control City's Water System
A simple mistake of leaving a former employee's user account active allowed hackers to take control of a city's water system, highlighting the importance of promptly disabling access for departed staff. This "zombie" account proved to be the vulnerable entry point that attackers exploited to wreak havoc on municipal operations.

Colorado Governor Commutes Sentence for Election Data Breacher Tina Peters
Colorado Governor Jared Polis has commuted the sentence of Tina Peters, the former Mesa County election clerk behind one of the most serious election-related data breaches in US history, freeing her from a nine-year prison term after just a year and a half. Peters was convicted of abusing her position to break into county election facilities under false pretenses.

Social Engineering Tactics Expose Company's Vulnerability
A simple request from "the boss" was all it took for a threat actor to gain root access to a company's system, exposing a shocking vulnerability in their security - one that was exploited through a clever social engineering tactic. Human IT managers, trying to be helpful, inadvertently handed over the keys to the kingdom.

AI Adoption Exposes New Vulnerabilities in APAC Cybersecurity
As AI systems increasingly become integral to business operations, they're also emerging as a major insider threat, with 7 in 10 APAC organisations now identifying AI as their top data security risk. This new breed of threat is forcing companies to rethink their cybersecurity strategies and take a closer look at the vulnerabilities AI can introduce.

Contractor Convicted for Destroying Dozens of Federal Databases
A contractor's reckless actions led to the destruction of dozens of federal databases, showcasing a staggering disregard for the security and integrity of sensitive government information. After being terminated on February 18, 2025, the contractor and his twin brother intentionally caused chaos by accessing computers without authorization and deleting crucial data.

UK Workers Sell Corporate Logins, Exposing Firms to Cybercrime
One in eight UK employees at large firms have sold or know someone who has sold corporate logins in the past year, a shocking trend that puts companies at risk of cybercrime. Alarming still, many justify this risky behaviour, with senior executives being more likely to think selling credentials is acceptable.

Pharmacist Indicted for Spying on Co-Workers with Cyber Tools
A pharmacist in Maryland has been indicted for allegedly spying on nearly 200 coworkers and individuals over eight years using cyber tools, breaching trust and violating digital boundaries. Matthew Bathula faces federal charges for unauthorized computer access and aggravated identity theft.

Ransomware Negotiator Exposed as Insider for Gang
A shocking case reveals a glaring weakness in ransomware incident response: organizations often put blind trust in single negotiators, leaving them vulnerable to exploitation by attackers. This human error, not a technical bug, can turn a trusted role into a gateway for cybercriminals.

US Army Employee Indicted for Leaking Classified Defense Information
A former US Army employee with a top-secret clearance has been indicted for allegedly leaking classified national defense information to unauthorized individuals, raising serious questions about trust and security breaches. This shocking case highlights the urgent need for tighter controls and monitoring of sensitive information.

Drift Protocol Hack Unfolds from Months-Long Insider Operation
The Drift Protocol hack, which resulted in a staggering $280 million loss, was not a quick exploit, but a meticulously planned six-month operation where attackers built a hidden presence within the ecosystem. This unprecedented breach reveals a shocking level of insider involvement, taking the attack far beyond a simple code vulnerability.

Engineer Pleads Guilty to Ransomware Extortion Plot Targeting Industrial Firm
A former infrastructure engineer has pleaded guilty to a ransomware extortion plot that targeted his own employer, an industrial firm in New Jersey, by locking administrators out of 254 servers. This shocking breach of trust highlights the devastating consequences of insider threats in the digital age.

Former Defense Contractor Boss: Exclusive Harsh 7-Year Term
A former defense‑contractor boss was sentenced to seven years after allegedly selling zero‑day vulnerabilities to a Russian buyer, a case that lays bare how quickly trusted tools can become weapons. It’s an unsettling reminder that when defenders traffic in the tools of attack, public trust—and national security—are the real casualties.

Cost of Insider Incidents: Stunningly Costly, Near $20M
Think insider incidents are minor? Think again—the cost of insider incidents can skyrocket to nearly $20 million, and this post shows where that money goes and how to stop the bleed.

Jackpotting Surge: Stunning, Costly $20M Hit to Banks
An FBI alert reveals ATM jackpotting cost banks $20M in 2025—criminals are now turning cash machines into programmable paydays by exploiting unpatched systems, weak credentials, and supply‑chain gaps. It’s a wake‑up call that security isn’t just about tech—people and processes matter too.

CISA Must Fix Stunning Insider Threat Failures
CISA warned the nation about insider threats, yet a senior officials upload of sensitive documents to a public AI chatbot revealed startling insider threat failures within the agency. Fixing this will take more than patches — it demands tighter access controls, stronger governance, and real cultural change.

Ransomware negotiator: Exclusive Guide to Best Practices
When the ransomware negotiator you trusted to defuse an attack becomes the attacker, the breach of trust is catastrophic. This guide explains what happened, why it matters, and how organizations can guard against insider betrayal.

Defense Contractor Guilty in Stunning Costly Zero-Day Sale
What happens when the person entrusted to build the locks quietly sells the keys? An indictment alleges a former Trenchant manager sold zero‑day exploits and offensive cyber tools to a Russian broker for about $1.3 million, potentially turning U.S. capabilities into weapons against American systems and allies.

Cyber exec Exclusive: Damning spy charges, lavish life
How did a senior manager at L3Harris’s secretive Trenchant unit allegedly trade zero-day vulnerabilities and exploit code to a Russian buyer for about $1.3 million—reportedly fueling a lavish lifestyle while putting U.S. national security at risk?

Cyber exec Exclusive: Charged in Scandalous Russia leak
When zero-day vulnerabilities leave the vault, who’s left to stop the fallout? Prosecutors say a former Trenchant GM sold exploit code and internal records to a Russian buyer for roughly $1.3M, allegedly turning U.S. defensive tools into offensive firepower.

Cyber exec in stunning, grim Russia spy charge
A former Trenchant executive is accused of selling prized zero‑day exploits and offensive cyber tools to a Russian buyer for about $1.3 million. The alleged breach of L3Harris’s cyber arm raises urgent questions about how such dangerous vulnerabilities slipped past safeguards—and what that means for national security and everyday software users.