For those of you who have been reading our blog posts for well over a decade (it’s been 18 years), you know I have always been a fan of Larry Ponemon. I follow his work closely, and he just came out with the 2025 Cost of Insider Risks Global Report sponsored by DTEX Systems.

As always, the report is chock full of important statistics to help organizations understand current risks so they can implement measures to mitigate them.

I have been involved in numerous insider threat incidents recently, and this Report confirms what I am seeing in the industry, which is that insider threats are climbing and they are very costly.

I recommend that you read the whole report yourself, but here are a couple of tidbits that were interesting to me:

• The total cost of an insider risk has risen to $17.4M USD (up from $16.2M in 2023) and “continues to climb;”
• Post-incident activity costs have climbed significantly;
• It takes an average of 81 days to respond to an insider incident;
• Insider risk management budgets have more than doubled since 2023;
• The number of insider incidents has increased, but the frequency of them has declined;
• Companies are adopting insider risk management programs and they are “starting to pay off;”
• Companies with insider risk management programs “are saving time and money associated with a breach.”

Insider threats continue to be problematic. Take a look at the new Ponemon Study to gain insight into how they are affecting your industry and how to combat them.