Rising threat from within: Insider attacks become costlier and more elusive

Press Release(NordLayer), 7 August 2025

Imagine thinking you’re surrounded by your most loyal colleagues only to learn that the real threat was inside all along. Insider threats aren’t just a technical glitch—they’re a human crisis, and they’re getting scarier. With breaches now costing nearly $5 million on average, it’s clear: the greatest danger may already be inside your walls.

The Invisible Danger Within

Insider threats whether accidental or malicious are among the most dangerous cybersecurity risks because they come from trusted employees who have legitimate access. According to IBM, malicious insider breaches in 2024 averaged $4.99 million per incident. That’s not just money it’s trust, reputation, and your peace of mind slipping away.

Why Detection Is Getting Harder—and Costlier

The Browser Is the New Battlefront

As Andrius Buinovskis from NordLayer points out, rising adoption of web-based SaaS tools is making insider threats tougher to catch. Traditional security solutions like ADR and XDR rely on network and desktop visibility—but they can’t distinguish ordinary browser activity from harmful behavior. With limited visibility, insiders can quietly exfiltrate data, install malicious extensions, or share credentials—without triggering alarms.

Small to Medium Businesses Face a Double Whammy

SMBs often lack robust ADR/XDR systems to begin with. As Buinovskis warns, their migration to browser-first environments further deepens the blind spot.

What’s at Stake—and What You Can Do

High Stakes, Often Invisible Damages

Employees frequently have access to highly sensitive systems and data. If misused, the fallout could range from GDPR penalties and reputational damage to ransomware demands.

Three Pillars of Insider Risk Defense

• Awareness Training
  The first line of defense—but only a start. Training helps reduce mistakes, yet it’s not enough for intentional threats.
• Comprehensive Protections
  You need strong access controls, multi-factor authentication, and continuous monitoring to catch suspicious behavior early.
• Enterprise-grade Browser Security
  In a SaaS-heavy world, enterprise browsers with built-in observability are essential. They provide the missing visibility into what employees are actually doing online.