Between 25 to 30 percent of data breaches involve an external actor working with an internal person in an organization, an OpenText senior security architect said. The Department of Justice charged two former Twitter employees for allegedly accessing thousands of accounts on behalf of Saudi Arabia. The General Data Protection Regulation (GDPR) does not explicitly change rules on employee monitoring, but the privacy law does include a number of provisions which will make monitoring more difficult for companies. With the increase of bring your own device (BYOD) policies, many companies walk a fine line in monitoring employees for insider threats.
Source: https://threatpost.com/insider-threats-cybercriminal-favorite/150128/