惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

W
WeLiveSecurity
博客园 - 【当耐特】
Microsoft Azure Blog
Microsoft Azure Blog
WordPress大学
WordPress大学
Stack Overflow Blog
Stack Overflow Blog
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
IT之家
IT之家
Cloudbric
Cloudbric
The Register - Security
The Register - Security
小众软件
小众软件
PCI Perspectives
PCI Perspectives
G
Google Developers Blog
AI
AI
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Google DeepMind News
Google DeepMind News
Google DeepMind News
Google DeepMind News
宝玉的分享
宝玉的分享
Recent Commits to openclaw:main
Recent Commits to openclaw:main
量子位
TaoSecurity Blog
TaoSecurity Blog
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
F
Full Disclosure
N
Netflix TechBlog - Medium
博客园_首页
Last Week in AI
Last Week in AI
A
Arctic Wolf
B
Blog RSS Feed
J
Java Code Geeks
C
Cybersecurity and Infrastructure Security Agency CISA
I
InfoQ
aimingoo的专栏
aimingoo的专栏
云风的 BLOG
云风的 BLOG
NISL@THU
NISL@THU
MyScale Blog
MyScale Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Jina AI
Jina AI
有赞技术团队
有赞技术团队
S
Schneier on Security
L
Lohrmann on Cybersecurity
P
Privacy & Cybersecurity Law Blog
T
Threat Research - Cisco Blogs
P
Palo Alto Networks Blog
S
Security @ Cisco Blogs
Security Archives - TechRepublic
Security Archives - TechRepublic
Security Latest
Security Latest
Vercel News
Vercel News
博客园 - 司徒正美
Webroot Blog
Webroot Blog
Hacker News: Ask HN
Hacker News: Ask HN
A
About on SuperTechFans

Latest from TechRadar

Quordle hints and answers for Monday, April 13 (game #1540) NYT Strands hints and answers for Monday, April 13 (game #771) NYT Connections hints and answers for Monday, April 13 (game #1037) Morbid Metal developer explains why he ditched an origami art direction in favor of gritty sci-fi — 'It worked, but it didn't really feel like me' '71% of US households get routers from ISPs': Why new FCC rules could leave millions stuck with outdated,… 'The CPU is the system’s executive layer': Intel joins SambaNova as both face existential threat from… ‘More bang for your buck’: 7 easy ways to boost your MacBook Neo’s performance for free DJI Romo P vs Roborock Saros 10R — which robot vacuum comes out on top when it comes to dodging obstacles? I put… I spent 6 hours with Genshin Impact on the Galaxy S26 Ultra, and I can't believe how far mobile gaming has come What is the release date for The Testaments episode 4 on Hulu and Disney+? I reviewed the LG G6 for 3 weeks, and it's a fantastic OLED TV that's the new best option for brighter rooms Is your bird feeder camera doing more harm than good? 3 tips for using it safely as RSPB issues urgent disease warning Chelsea vs Man City Live Streams: How to watch Premier League 2025/26 from anywhere in the world, team news How to watch Alcaraz vs Sinner for FREE: TV Channels for Monte-Carlo Masters Final Sunderland vs Tottenham Live Streams: How to watch Premier League 2025/26 from anywhere in the world, team news Are these the best-designed workout headphones ever? I used them for a month to find out How to watch Snooker 900 John Virgo online (it's free) – stream O'Sullivan vs Higgins anywhere I've only just discovered the Walk With Frodo app on Garmin's Connect IQ store — and as as a huge LOTR nerd, it's going to make the next 1,800 miles fly by 'Just not sustainable': Why your monthly £25 broadband internet bill could soon hit £45 How to watch Paris-Roubaix 2026: Free Streams & TV Info as Tadej Pogacar chases third Monument How to watch Euphoria season 3 online – stream Zendaya & Sydney Sweeney drama from anywhere today '$15K bill destroyed a solo developer’s startup': How hackers are using leaked Google API keys to… There's a sneaky way to watch UFC 327 really cheap... NYT Connections hints and answers for Sunday, April 12 (game #1036) NYT Strands hints and answers for Sunday, April 12 (game #770) Quordle hints and answers for Sunday, April 12 (game #1539) Amazon's Ring cameras are the perfect solution to secure your home on a budget — shop today's best deals… I've tested every iPhone since the iPhone 12, and Ceramic Shield 2 is the first iPhone glass I fully trust UFC 327 live stream: how to watch Procházka vs Ulberg, start time, preview, full card We're officially getting the DJI Pocket 4 on April 16, but here's how Insta360 could beat it 'Today is the day you've been waiting for': eGPUs can now officially turn a humble Mac Mini into an AI… Linux pulls support for ancient CPU — unsurprisingly, Linus Torvald says there is 'zero real reason' to… Keanu Reeves' new Apple TV movie Outcome has been slammed by critics — watch these 4 highly-rated films with the beloved actor instead 'AI is a once-in-a-lifetime opportunity': Amazon CEO Andy Jassy lays out his '6 truths' for the… How to watch Grand National 2026: Free Streams & TV Channels for Aintree National Hunt Race ‘I hadn’t verified a single thing’: Using ChatGPT for Iran war news changed how I trust information Want cafe-quality lattes at home without buying an expensive new coffee machine? Jura's new gadget upgrades your drinks with perfectly foamed milk every time 'A self-inflicted hit': Washington state just rolled back sales tax exemptions for AI data centers worth… Playing The Last of Us with friends made my favorite PlayStation game feel brand new again Mint Mobile's new Samsung Galaxy S26 series deal can save you up to $900 — enough to cover an entire device Not a squat, not a deadlift — the trap bar deadlift 'sits between' the two, builds muscle fast and is… Record Store Day 2026 starts soon! The date, the top vinyl drops, and everything else you need to know Women's Six Nations 2026 Free Streams: TV Channels, Preview, Table, Round 5 Fixtures, France vs England Time Beyond Paradise season 4 star would 'love' to do The Celebrity Traitors season 2 — and would be 'terrified' if one contestant came to Shipton Abbott 'There’s no one-size-fits-all office chair': Vari explains the design decisions behind its award-winning… I was a vacuum reviewer for two years — these are the 6 sub-£250 models I'd recommend in a heartbeat Save $200 and get the Samsung Galaxy S26 Ultra at its preorder price for a limited time at Amazon 'Small business owners have significant creative control from start to finish' — VistaPrint reveals the… TurboQuant isn't the RAM crisis savior you're hoping for, analysts say — as memory prices continue to… ICYMI: the 7 biggest tech stories of the week, from DJI's new robovac to Artemis II iPhone photos I matched the upgraded Meta AI against ChatGPT, and you can really tell which AI has social media roots Quordle hints and answers for Saturday, April 11 (game #1538) I created my dream coffee corner at IKEA for under $100 — and my mornings are about to get a lot cozier 'Experts' to rent for $1 per month: Hostinger debuts 7-person AI team to help SMBs save thousands on… The new MacBook Air has already dropped to a record-low price on Amazon I tested Turtle Beach's Mario-themed controller and headset for Nintendo Switch 2 — and they surprised me for… NYT Strands hints and answers for Saturday, April 11 (game #769) NYT Connections hints and answers for Saturday, April 11 (game #1035) After soaring 2,200%, DDR4 RAM prices finally fall — but don't get too excited It's "completely changed my home cleaning habits": The Dreame Z20 is a highly effective vacuum cleaner for even lsrger homes. Beyond no-log: Tor looks into seizure-proof servers that forget your data There's a sneaky way to watch IPL 2026 for FREE Microsoft hands Linux Foundation key Surface data to help fix laptop battery life Adobe Reader users beware — experts flag months-old security flaw using booby-trapped PDFs to scope out victims 'Shockingly good value': New rugged Android tablet has a built-in 1080p projector, night-vision camera, and… Stop the presses — Microsoft is actually cutting cloud PC prices for SMBs, promises to make it 'more cost-effective for small and medium businesses' Microsoft has begun stripping out AI from Windows 11 — but it's already being criticized for not going far… Euphoria season 3 episode 3 release date: when will it come out on HBO Max? 'If one piece of your supply chain is delayed, then your whole project can't deliver': Nearly half of US data centers planned for 2026 canceled or delayed — and things could soon get much worse ChatGPT’s hidden backup model just got smarter — as OpenAI adds a cheaper Pro option Forget Big Mistakes — new Netflix true crime series Trust Me: The False Prophet is the only TV show you need to… 'The problem is not AI’s capability...what won’t improve on its own is the human side': Major study claims white-collar workers are fighting back against AI in the workplace Introducing Perspectives — the new home for premium contributed content on TechRadar Pro ‘Computers are no longer a bicycle for the mind’: Frameworks founder says the Steve Jobs era is over and PCs are now a ‘self-driving car that takes you directly to the destination’ No, Elon Musk doesn't want to give you a $5,000 tax refund — it's a scam, here's what to look out… ‘It’s a potential national security threat’: Proton study finds over 3,500 US legislators’ official emails leaked and exposed on the dark web ‘I want to cancel’: YouTube Premium quietly hikes its US prices for the first time in three years, forcing… RTX 5090s and other high-powered graphics cards may carry risks of cable melting issues — but Asus thinks it has… Former Xbox exec thinks Naughty Dog's decision to cancel the 80% completed The Last of Us Online 'was the right call', but it shouldn't have greenlit it in the first place — 'The ambition was there, but the realistic upfront planning wasn't', she says West Ham vs Wolves Live Streams: How to watch Premier League 2025/26 from anywhere in the world Microsoft warns worrying security flaw exposed over 50 million Android users, says 'user credentials and financial… ‘Apple will grit its teeth and push through’ — new report suggests the iPhone Air 2 isn’t dead,… Google Chrome rolls out a new tool to try and stop infostealer malware in its tracks 'Two Hells collide' — Doom: The Dark Ages and Diablo Immortal unite in a limited-time crossover event,… Spotify is rolling out new video controls, and as someone who hates its in-app music videos, I know this will be a huge… 8 new movies and TV shows to watch on Netflix, Prime Video, HBO Max, and more this weekend (April 10) AdGuard VPN has a new app for iPhone — and you can try it out for 7 days for free Currys refuses to end its Easter sale — I've found the 21 best tech deals that are still available Amazon is slashing prices on Garmin watches — save up to $350 on best-rated models for running, biking and hiking Inspired to start running this summer? Here are 8 brilliant running shoes I'd recommend for beginners NASA used a 12-year-old GoPro to capture a sight called the ‘greatest gift’ by Artemis II pilot — and… iPhone owners urged to change this key privacy setting after FBI recovers suspect’s deleted Signal messages How to read Murder in Purple and Gold online from anywhere Garmin's cashing in on the screenless Whoop-style smart band trend with its upcoming CIRQA — here's the… YouTube insists that a 90-sec, unskippable ad format 'isn't something we are testing' — but furious… ‘Everything is magenta’: This wild hack got Mac OS X Cheetah working on a Nintendo Wii, and I can’t… A new free-to-play Borderlands game gets surprise drop on mobile, which Zynga says is part of a 'limited-time… The Xiaomi 17 outmuscles the iPhone 17 and Galaxy S26 in several key areas — read our full review In a sea of PlayStation Portal cases, the one I value the most has yet to be beaten How to submit an article for TechRadar Pro Perspectives
The real cost of insider threats is not the incident: It’s the frequency
Nicky Choo · 2026-05-27 · via Latest from TechRadar

While much of the cybersecurity conversation focuses on how AI is transforming external threats, many organizations in Asia Pacific are dealing with a more immediate issue: the growing frequency of insider-driven incidents.

For years, cybersecurity has been shaped by the idea of the “big incident”, a single, high-impact incident that disrupts operations, exposes sensitive data, and makes headlines. But that framing no longer reflects how risk plays out in many organizations today, particularly across Asia Pacific.

APAC Vice President and General Manager, Mimecast.

Recent research shows that organizations in APAC are experiencing insider-driven cyber incidents more frequently than their counterparts in North America and Europe. On average, companies in the region face around eight such incidents each month, compared with approximately six in EMEA and five in North America.

While the cost per incident is broadly consistent globally, the higher frequency in APAC changes the equation entirely.

The real issue is not the scale of any one exposure. It is the cumulative impact of many.

From exceptional events to everyday risk

Insider-driven incidents are no longer rare or exceptional. They are becoming a routine part of operating in a digital environment.

These incidents can take many forms. An employee shares sensitive data through an unauthorized channel. Credentials are compromised and used to access internal systems. A file is inadvertently exposed through a misconfigured platform. In most cases, there is no malicious intent. The risk emerges from how people interact with systems, data and tools in the course of doing their jobs.

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

What is changing is not just the nature of these incidents, but their frequency.

When organizations are dealing with multiple insider-driven events each month, the conversation shifts. This is no longer about preventing a single incident. It is about managing a continuous stream of exposure.

Why APAC is seeing more frequent incidents

The higher frequency of insider-driven incidents in APAC is not a coincidence. It reflects how organizations in the region are structured and how they operate.

Many companies across APAC manage large and geographically distributed workforces. Team collaboration across markets, time zones and digital platforms is common. Daily operations involve high volumes of communication and data exchange, often across a mix of on-premise systems, cloud storage environments and third-party applications.

This creates more opportunities for data to move and, with it, more opportunities for it to be mishandled, exposed or misused.

At the same time, organizations are rapidly adopting new tools to improve productivity, including AI tools that can access and process large volumes of information. While these tools bring clear efficiency gains, they also introduce new pathways for data exposure, often without corresponding visibility or control.

The result is an environment where insider risk is shaped less by isolated mistakes and more by the interaction between people, processes and increasingly complex digital systems.

The financial impact of insider-driven incidents is well understood. What is less often discussed is how that impact compounds over time.

Each incident carries a cost. But when incidents occur repeatedly, those costs accumulate across multiple dimensions.

Security teams are placed under constant pressure to investigate and respond. Incident response processes become stretched. Operational disruption becomes more frequent. Over time, this can erode efficiency and divert resources away from strategic initiatives.

There is also a broader impact on trust. Customers and partners expect organizations to manage their data responsibly. Repeated incidents, even if individually contained, can undermine confidence in an organization's ability to do so.

Regulatory exposure adds another layer of complexity. As governments across APAC strengthen requirements around data protection and privacy, organizations face increasing scrutiny. In Singapore, the Personal Data Protection Commission has stepped up enforcement under the Personal Data Protection Act, with organizations expected to demonstrate not just that incidents are contained, but that appropriate safeguards and processes are consistently in place.

Frequent incidents can therefore raise questions not just about technical controls, but about governance and oversight.

Why traditional approaches fall short

Many organizations continue to approach cybersecurity with a focus on external threats and technical vulnerabilities.

This approach remains important, but it does not fully address the nature of insider-driven risk.

Traditional models tend to assume that incidents are infrequent and can be managed as discrete events. They are designed to detect anomalies, respond to incidents, and restore systems to a secure state.

In an environment where incidents occur regularly, this model becomes less effective.

Responding to each incident in isolation does little to address the underlying patterns driving repeated exposure. Over time, organizations can find themselves caught in a cycle of detection and response, without reducing the overall level of risk.

Rethinking insider risk as a continuous challenge

To manage insider-driven risk effectively, organizations need to shift their perspective.

This starts with recognizing that insider risk is not an edge case. It is a core component of the modern threat landscape, shaped by everyday behavior and routine operations.

Visibility becomes critical — and increasingly, that means behavioral visibility. Organizations need to understand not just who is accessing data, but how. Sudden spikes in downloads, unusual transfers to personal applications, or attempts to disguise files by renaming them can all be early indicators of exposure. These signals are easy to miss when security teams are focused on perimeter threats, but they are often where insider risk first becomes visible.

Context is equally important. Not all actions carry the same level of risk. Understanding the intent, behavior and environment surrounding an activity allows organizations to prioritize what genuinely requires attention rather than chasing noise.

AI-driven tools add a further layer of complexity. As organizations across APAC adopt AI applications to improve productivity, these tools can access and process large volumes of sensitive information — often without corresponding visibility or controls. At the same time, AI can be a significant asset in detection, establishing behavioral baselines and surfacing anomalies that would be difficult to identify manually. The key is ensuring that AI adoption on the operational side is matched by AI-informed oversight on the security side.

Importantly, the goal is not to restrict employees but to support them. Research consistently shows that the majority of insider incidents are unintentional — the result of poor judgement or unfamiliar tools, not malicious intent. Employees should not be treated as the weakest link. They should be set up for success, with clear guidance, appropriate access, and a culture where reporting concerns feels safe rather than risky.

Managing risk at scale

As insider-driven incidents become more frequent, the challenge for organizations is not just prevention, but management at scale.

This means moving beyond reactive approaches towards models that can identify patterns, anticipate risk, and respond in a way that reduces overall exposure over time.

Zero trust principles are increasingly central to this. Limiting employee access to only what their role genuinely requires — and continuously reassessing those privileges as roles change — reduces the potential impact when an account is compromised or misused. Offboarding processes deserve particular attention. Employees who leave often retain access longer than they should, and those familiar with internal systems can represent a significant exposure window if that access is not promptly revoked.

It also requires stronger alignment between security, operations and governance. Insider risk does not sit neatly within a single function. It spans technology, people and process, and needs to be addressed accordingly. Insider risk needs to be treated as an ongoing program, not a periodic review or a compliance exercise.

In APAC, where organizations are operating in fast-moving and highly connected environments, this shift is particularly urgent. With large and distributed workforces operating across multiple markets, the conditions for insider risk are structural — building continuous risk management capability is not optional.

A different way of thinking about cyber risk

The narrative around cybersecurity has long been shaped by the idea of catastrophic events. While those events still matter, they are no longer the only, or even the primary, source of risk for many organizations.

In APAC, insider-driven incidents are happening more often, and that frequency is what makes them significant. When the average organization in the region faces around eight such incidents each month, the cumulative financial and operational impact adds up fast — even before factoring in the regulatory scrutiny that increasingly follows repeated exposure.

The question is no longer whether an incident will occur. It is how often, and how well organizations are prepared to manage the impact when it does. The organizations that manage this well will not necessarily be those with the largest security budgets. They will be those that treat insider risk as a continuous, evolving challenge — investing in the visibility, culture and controls that reduce exposure before incidents occur, not just responding after they do.

The organizations that succeed will not be those that simply prevent incidents, but those that understand and manage risk as a continuous, evolving part of doing business.

Because in today’s environment, the cost of insider risk is not defined by a single moment of failure. It is defined by how often that moment repeats.

We list the best ITSM tools, to make it simple and easy to improve your Information Technology Service Management.

This article was produced as part of TechRadar Pro Perspectives, our channel to feature the best and brightest minds in the technology industry today.

The views expressed here are those of the author and are not necessarily those of TechRadarPro or Future plc. If you are interested in contributing find out more here: https://www.techradar.com/pro/perspectives-how-to-submit