An employee who used an app to escalate privileges in a bid to download a torrent client onto a work computer. A programmer who ran code from GitHub and ransomed his own machine. An internal user who tried to troubleshoot a Linux host machine rather than going to IT – and used a local privilege escalation vulnerability to do so.
Those are just some of the insider threats CrowdStrike said it detected from January 2021 through April in a Thursday blog post characterizing what it said is the growing threat of cyber incidents caused by insiders.