Motive
Coercion
Espionage
Fear of Reprisals
Hubris
Human Error
Joiner
Lack of Awareness
Leaver
Misapprehension or Delusion
Mover
Personal Gain
Political or Philosophical Beliefs
Recklessness
Resentment
Self Sabotage
Third Party Collusion Motivated by Personal Gain
- ID: MT015
- Created: 21st July 2024
- Updated: 21st July 2024
- Contributor: The ITM Team
Recklessness
The subject does not have a threatening motive. However, the subject under takes actions without due care and attention to the outcome, which causes an infringement.
Prevention
| ID | Name | Description |
|---|---|---|
| PV023 | Access Reviews | Routine reviews of user accounts and their associated privileges and permissions should be conducted to identify overly-permissive accounts, or accounts that are no longer required to be active. |
| PV012 | End-User Security Awareness Training | Mandatory security awareness training for employees can help them to recognize a range of cyber attacks that they can play a part in preventing or detecting. This can include topics such as phishing, social engineering, and data classification, amongst others. |