Insider Risks Are Rising — Here’s How Leaders Are Responding

Insider-driven data loss is widespread, costly, and often unintentional. The 2025 Insider Risk Report exposes where visibility breaks down, the tools helping and hindering efforts, and what leaders are doing now to stop the next incident.

It highlights the maturity of today's programs and what security pros are focusing on.

Most incidents are unintentional

62%

of incidents stem from negligent/compromised users

The attack surface has expanded

56%

worry about GenAI exposing data

DLP is increasingly a barrier

47%

find legacy DLP tools are effective

Insider Risk Is a Business-Critical Threat

77%

of organizations experienced insider-driven data loss in the past 18 months—with many reporting million-dollar impacts.

Get the insights you need to close gaps and strengthen insider risk program and data protection strategies in 2025.

Download the full report to discover how security pros are transforming strategies and looking to novel tools to drive effective protection for sensitive data.

Key Challenges

Organizations are facing limited visibility into SaaS and AI tools, with legacy DLP struggling to keep up, resulting in dangerous blind spots. To close the gaps, security leaders are pivoting to behavior-aware, next-gen strategies.

72% lack visibility into how users handle sensitive data

45% are very concerned by the sharing of data with GenAI tools

77% faced insider-driven data loss in the past 18 months

Key Findings

Insider risk is no longer just about malicious actors. Everyday user actions, SaaS blind spots, and GenAI adoption are fueling costly incidents. This report highlights how security teams are shifting strategies to protect sensitive data.