
In 2024, 95% of data breaches resulted from human error, according to a study by Mimecast.
Data exposure or loss due to insider threat or human error costs an organization an average of $13.9 million.
In fact, 66% of organizations are concerned that insider data loss will escalate in 2025 even though 86% of employees are confident in identifying phishing emails.
What makes it perilous is that only a small fraction of employees cause such havoc. Just 8% of employees accounted for 80% of security incidents driven by insider threats, credential misuse, and human missteps.
The survey was based on interviews conducted with 1,100 IT security and IT decision makers. Most organization respondents (95%) admitted using Artificial Intelligence (AI) to guard against external attacks and insider threats.
Although organizations leverage AI for threat detection and real-time monitoring (46%), endpoint protection (46%), and behavioural or sentiment insider threat analysis (43%), 81% are concerned about Gen AI leading to sensitive data leaks.
On top of that, 61% feel their organization could suffer “a negative business impact” from attacks on collaboration tools and, 95% anticipate email security challenges in 2025.
Security awareness education is non-negotiable for any organization serious about cybersecurity. Most organizations (87%) admitted security awareness training helped employees spot cyberattacks.