What is it?
somebody within an organisation, usually with access to sensitive data, who will undertake in some activity to compromise the security of their own organisation. Some methods to mitigate this risk type include behavioural assessments, and background checks. shadow IT is a major theme of insider attacks.
Why is it mentioned?
Insider threats are some of the hardest to control and detect, as organisations place trust in their employees, but sometimes you cannot predict what someone may do.