Insider threats pose one of the largest security risks to organizations, and often go unnoticed or unaddressed. Malicious and negligent employees can commit devastating acts, such as Denial-of-Service attacks, deletion of crucial data, leakage or theft of sensitive information. Measures against such threats include rigorous procedures, controls and frameworks like ISO 27001 and ISO 42001, robust monitoring systems, strict access controls, regular audits and fostering a culture of security awareness among employees. Negligence due to AI and LLM tools usage also creates vulnerabilities. Commitment to these measures should be enforced daily and not be reduced to tick-box exercises.

Botnet campaign hits unpatched TP-Link Archer AX-21 routers
The “Ballista” botnet campaign is exploiting a high-level security flaw to infect unpatched TP-Link routers. Detected by Cato CTRL researchers in January 2025, it has