Advocates of improving corporate enterprise data network security measures sometimes allude to the notion that network breaches from corporate insiders who know the network are the most common and dangerous type of attack. However, a three-year study from Verizon Business showed that outsider attackers were far more common, and that 39 percent of breaches actually came from a trusted partner of some kind.
What is not clear is whether or not a large number of inside jobs are still falling through the cracks because they are harder to detect, which is also exactly what those aforementioned advocates have been saying all along. Verizon makes note of this unknown as well in its study.
- see this post at Wired