Skip to main content

Tag: insider threat

28 articles

Blurred laptop screen on a desk with a concerned person in the background.

Huntress Insider Threat Exposed in Ransomware Probe Leak

A Huntress insider reportedly made a grave mistake, casually disclosing to a cybercriminal that law enforcement was on their tail - a moment of poor judgment that fell short of the company's high standards. The alarming exchange was part of a larger pattern of questionable communication uncovered between the currently employed threat hunter and the threat actor.

Analyst 207
Dimly lit office cubicle with scattered papers, open laptop, and concerned coworkers in the background.

Huntress Insider Leak Exposes Potential Security Breach

A shocking security breach at Huntress has come to light, with a former analyst claiming that a colleague may have compromised the company's integrity by passing sensitive law enforcement communications to a notorious cybercriminal. The explosive allegations have left many questions unanswered about the breach and its potential impact.

Analyst 207
Damaged IT equipment and exposed cables in a school district's network closet.

Former IT Employee Sabotages School District with Prolonged Cyberattack

A former IT employee waged a relentless cyberwar against his old employer, the Saydel Community School District, launching a devastating 21-month attack that crippled the district's systems and disrupted classrooms. The attacks began just days after he left his job, with the deletion of the district's Facebook account, and continued with repeated intrusions into critical services.

Analyst 207
Blurred computer screen and security emblem in background of courtroom or IT office setting.

Disgruntled IT worker sabotages school district systems, jailed 21 months

A disgruntled IT worker wreaked havoc on a school district's systems for over a year and a half, causing chaos and destruction, after being terminated from his job. The sabotage spree, which included deleting crucial data and altering systems, earned him a 21-month jail sentence.

Analyst 207
Control room workstation with industrial controls and out-of-focus screens.

Inactive User Account Enables Hackers to Control City's Water System

A simple mistake of leaving a former employee's user account active allowed hackers to take control of a city's water system, highlighting the importance of promptly disabling access for departed staff. This "zombie" account proved to be the vulnerable entry point that attackers exploited to wreak havoc on municipal operations.

Analyst 207
Governor Jared Polis in a formal office setting with a blurred state seal and election-related hints.

Colorado Governor Commutes Sentence for Election Data Breacher Tina Peters

Colorado Governor Jared Polis has commuted the sentence of Tina Peters, the former Mesa County election clerk behind one of the most serious election-related data breaches in US history, freeing her from a nine-year prison term after just a year and a half. Peters was convicted of abusing her position to break into county election facilities under false pretenses.

Analyst 207
IT manager sits at desk with concerned expression, surrounded by office decor.

Social Engineering Tactics Expose Company's Vulnerability

A simple request from "the boss" was all it took for a threat actor to gain root access to a company's system, exposing a shocking vulnerability in their security - one that was exploited through a clever social engineering tactic. Human IT managers, trying to be helpful, inadvertently handed over the keys to the kingdom.

Analyst 207
Rows of computer servers and network equipment in a brightly-lit server room with neatly organized cables and wires.

AI Adoption Exposes New Vulnerabilities in APAC Cybersecurity

As AI systems increasingly become integral to business operations, they're also emerging as a major insider threat, with 7 in 10 APAC organisations now identifying AI as their top data security risk. This new breed of threat is forcing companies to rethink their cybersecurity strategies and take a closer look at the vulnerabilities AI can introduce.

Analyst 207
Interior of a government building with a judge's bench and tall windows.

Contractor Convicted for Destroying Dozens of Federal Databases

A contractor's reckless actions led to the destruction of dozens of federal databases, showcasing a staggering disregard for the security and integrity of sensitive government information. After being terminated on February 18, 2025, the contractor and his twin brother intentionally caused chaos by accessing computers without authorization and deleting crucial data.

Analyst 207
Employees in a dimly lit office break room subtly exchanging a piece of paper or USB drive.

UK Workers Sell Corporate Logins, Exposing Firms to Cybercrime

One in eight UK employees at large firms have sold or know someone who has sold corporate logins in the past year, a shocking trend that puts companies at risk of cybercrime. Alarming still, many justify this risky behaviour, with senior executives being more likely to think selling credentials is acceptable.

Analyst 207
Government building interior with daylight through tall windows and empty podium.

Pharmacist Indicted for Spying on Co-Workers with Cyber Tools

A pharmacist in Maryland has been indicted for allegedly spying on nearly 200 coworkers and individuals over eight years using cyber tools, breaching trust and violating digital boundaries. Matthew Bathula faces federal charges for unauthorized computer access and aggravated identity theft.

Analyst 207
Ransomware incident responder sits at desk with laptop and papers, highlighting vulnerability.

Ransomware Negotiator Exposed as Insider for Gang

A shocking case reveals a glaring weakness in ransomware incident response: organizations often put blind trust in single negotiators, leaving them vulnerable to exploitation by attackers. This human error, not a technical bug, can turn a trusted role into a gateway for cybercriminals.

Analyst 207
Worn office chair faces empty desk with shattered laptop and scattered papers amidst dark filing cabinets.

US Army Employee Indicted for Leaking Classified Defense Information

A former US Army employee with a top-secret clearance has been indicted for allegedly leaking classified national defense information to unauthorized individuals, raising serious questions about trust and security breaches. This shocking case highlights the urgent need for tighter controls and monitoring of sensitive information.

Analyst 207
Drift Protocol Hack Unfolds from Months-Long Insider Operation

Drift Protocol Hack Unfolds from Months-Long Insider Operation

The Drift Protocol hack, which resulted in a staggering $280 million loss, was not a quick exploit, but a meticulously planned six-month operation where attackers built a hidden presence within the ecosystem. This unprecedented breach reveals a shocking level of insider involvement, taking the attack far beyond a simple code vulnerability.

Analyst 207
Engineer Pleads Guilty to Ransomware Extortion Plot Targeting Industrial Firm

Engineer Pleads Guilty to Ransomware Extortion Plot Targeting Industrial Firm

A former infrastructure engineer has pleaded guilty to a ransomware extortion plot that targeted his own employer, an industrial firm in New Jersey, by locking administrators out of 254 servers. This shocking breach of trust highlights the devastating consequences of insider threats in the digital age.

Analyst 207
Former Defense Contractor Boss: Exclusive Harsh 7-Year Term

Former Defense Contractor Boss: Exclusive Harsh 7-Year Term

A former defense‑contractor boss was sentenced to seven years after allegedly selling zero‑day vulnerabilities to a Russian buyer, a case that lays bare how quickly trusted tools can become weapons. It’s an unsettling reminder that when defenders traffic in the tools of attack, public trust—and national security—are the real casualties.

Analyst 207
Cost of Insider Incidents: Stunningly Costly, Near $20M

Cost of Insider Incidents: Stunningly Costly, Near $20M

Think insider incidents are minor? Think again—the cost of insider incidents can skyrocket to nearly $20 million, and this post shows where that money goes and how to stop the bleed.

Analyst 207
Jackpotting Surge: Stunning, Costly $20M Hit to Banks

Jackpotting Surge: Stunning, Costly $20M Hit to Banks

An FBI alert reveals ATM jackpotting cost banks $20M in 2025—criminals are now turning cash machines into programmable paydays by exploiting unpatched systems, weak credentials, and supply‑chain gaps. It’s a wake‑up call that security isn’t just about tech—people and processes matter too.

Analyst 207
CISA Must Fix Stunning Insider Threat Failures

CISA Must Fix Stunning Insider Threat Failures

CISA warned the nation about insider threats, yet a senior officials upload of sensitive documents to a public AI chatbot revealed startling insider threat failures within the agency. Fixing this will take more than patches — it demands tighter access controls, stronger governance, and real cultural change.

Analyst 207
Ransomware negotiator: Exclusive Guide to Best Practices

Ransomware negotiator: Exclusive Guide to Best Practices

When the ransomware negotiator you trusted to defuse an attack becomes the attacker, the breach of trust is catastrophic. This guide explains what happened, why it matters, and how organizations can guard against insider betrayal.

Analyst 207
Defense Contractor Guilty in Stunning Costly Zero-Day Sale

Defense Contractor Guilty in Stunning Costly Zero-Day Sale

What happens when the person entrusted to build the locks quietly sells the keys? An indictment alleges a former Trenchant manager sold zero‑day exploits and offensive cyber tools to a Russian broker for about $1.3 million, potentially turning U.S. capabilities into weapons against American systems and allies.

Analyst 207
Cyber exec Exclusive: Damning spy charges, lavish life

Cyber exec Exclusive: Damning spy charges, lavish life

How did a senior manager at L3Harris’s secretive Trenchant unit allegedly trade zero-day vulnerabilities and exploit code to a Russian buyer for about $1.3 million—reportedly fueling a lavish lifestyle while putting U.S. national security at risk?

Analyst 207
Cyber exec Exclusive: Charged in Scandalous Russia leak

Cyber exec Exclusive: Charged in Scandalous Russia leak

When zero-day vulnerabilities leave the vault, who’s left to stop the fallout? Prosecutors say a former Trenchant GM sold exploit code and internal records to a Russian buyer for roughly $1.3M, allegedly turning U.S. defensive tools into offensive firepower.

Analyst 207
Cyber exec in stunning, grim Russia spy charge

Cyber exec in stunning, grim Russia spy charge

A former Trenchant executive is accused of selling prized zero‑day exploits and offensive cyber tools to a Russian buyer for about $1.3 million. The alleged breach of L3Harris’s cyber arm raises urgent questions about how such dangerous vulnerabilities slipped past safeguards—and what that means for national security and everyday software users.

Analyst 207