Google Answers Logo
View Question
Q: Percentage of hacks/breaches that come from inside a company ( Answered 5 out of 5 stars,   1 Comment )
Subject: Percentage of hacks/breaches that come from inside a company
Category: Business and Money
Asked by: marykayems-ga
List Price: $10.00
Posted: 23 Nov 2006 19:00 PST
Expires: 23 Dec 2006 19:00 PST
Question ID: 785161

I'm rewriting a white paper for an IT services company and I'd like to
add a statistic of the percentage of hacks or security breaches that
come from inside a company.

Subject: Re: Percentage of hacks/breaches that come from inside a company
Answered By: umiat-ga on 23 Nov 2006 23:32 PST
Rated:5 out of 5 stars
Hello, marykayems-ga!

 Recent research claims that most security breaches come from within the company.

"Despite the publicity received by external security threats, attacks
from within are a great risk.

* In fact, among the TMT companies whose security was breached in the
last 12 months, half were attacked from inside the company.

Less than half (47 percent) of respondents said they were very
confident that their infrastructure is property protected against
internal attacks, as opposed to almost two-thirds (63 percent) for
external attacks. The vast majority of TMT companies (83 percent) said
they are concerned about employee misconduct involving information

See "More Than Half Of Tech Companies Admit Breaches In Past Year, Not
Sufficiently Funding Security, Says Deloitte Report." Deloitte.


"A recent Ponemon Institute survey of 163 Fortune 1000 companies found
that roughly 70 percent of all reported security breaches were due to

"It's much more glamorous to think of the hacker who works for some
large cyber-crime ring," said Larry Ponemon, head of the Tuscon,
Ariz., think tank. "But in reality, those characters only make up a
small percent of the problem."

Read "Securing data from the threat within," by Marguerite Reardon,
CNET January 11, 2005


"According to a study by the FBI, an estimated 70 percent of these
network breaches originate from within. While there is an increased
awareness and improved technology to cope with some threats such as
viruses, unauthorized access to information is on the rise,
representing a loss of more than $303,000. per incident."

"As Gartner analyst Rich Mogull warned, "Corporate networks are like
candy bars: hard on the outside, soft and chewy on the inside." He
cautions, "Perimeter security alone doesn't guard against all the
threats enterprises face, such as malicious internal staff, [or]
physical theft of machines...Enterprises must also protect content and
data with internal security controls, including appropriate use of
encryption, vulnerability management, identify management, and
activity monitoring."

Read "Data Security's Achilles Heel," by Adam Bosnian, Cyber-Ark. 
February 07, 2006


Security policies are still lacking in many industries:

"It may sound simple, but it is a fact: most companies and agencies
lack the basic policies and enforcement of information assurance
across the organization. Based on results from the CompTIA survey,
only a slight majority of organizations (51 percent) have a written IT
policy in place. IT security policies are more common in the financial
services industry (62 percent), government (58 percent) and education
(41 percent)sectors. IT organizations are the least likely industry
sector to have a security policy in place - only 35 percent do,
according to the survey."

Read "Assuring Global Information Security Across the Organization,"
by Martin Bean. ISSA Journal. April 2005


Also read "Enterprise Security Threats Increasingly Come from Within,"
By  Matt Hines. March 22, 2006,1895,1941428,00.asp


 I hope these references provide some helpful statistics for your research!



Search Strategy
percent of security breaches are from inside the company
security breaches come from within company
marykayems-ga rated this answer:5 out of 5 stars and gave an additional tip of: $2.00
This is very helpful and very thorough.

Thank you!

Subject: Re: Percentage of hacks/breaches that come from inside a company
From: umiat-ga on 28 Nov 2006 12:13 PST
Thank you for the kind words, 5-star rating and generous tip. I am so
glad I could help!

Important Disclaimer: Answers and comments provided on Google Answers are general information, and are not intended to substitute for informed professional medical, psychiatric, psychological, tax, legal, investment, accounting, or other professional advice. Google does not endorse, and expressly disclaims liability for any product, manufacturer, distributor, service or service provider mentioned or any opinion expressed in answers or comments. Please read carefully the Google Answers Terms of Service.

If you feel that you have found inappropriate content, please let us know by emailing us at with the question ID listed above. Thank you.
Search Google Answers for
Google Answers  

Google Home - Answers FAQ - Terms of Service - Privacy Policy