Latest news with #LivingSecurity
Malaysian Reserve
22-07-2025
- Business
- Malaysian Reserve
New Report Reveals Just 10% of Employees Drive 73% of Cyber Risk
AUSTIN, Texas, July 22, 2025 /PRNewswire/ — Living Security, the global leader in Human Risk Management (HRM), today released the 2025 State of Human Cyber Risk Report, an independent study conducted by leading research firm Cyentia Institute. The report provides an unprecedented look at behavioral risk inside organizations and reveals how strategic HRM programs can reduce that risk 60% faster than traditional methods. Drawing on behavioral data from more than 100 enterprises and hundreds of millions of user events, the study offers a first-of-its-kind, data-driven map of where cyber risk actually lives in the workforce and how leading organizations are shrinking it. The report confirms a long-suspected but rarely proven reality: a small fraction of employees (just 10%) are responsible for 73% of risky behavior. According to the findings, it's clear that protecting the enterprise in 2025 means managing people, not just systems. 'Security teams have always known the human factor plays a critical role in breaches, but they've lacked the visibility to act on it,' said Ashley Rose, CEO and Co-founder of Living Security. 'Until now, most insights have relied on anecdotal evidence or narrow indicators like phishing clicks. This report changes that by providing hard data that shows exactly where risk lives, and what actually works to reduce it.' Key Findings from the Report: Human risk is concentrated, not widespread: Just 10% of employees are responsible for nearly three-quarters (73%) of all risky behavior. Visibility is alarmingly low: Organizations relying solely on security awareness training (SAT) have visibility into only 12% of risky behavior, compared to 5X that for mature HRM programs. Risk is often misidentified: Contrary to popular belief, remote and part-time workers are less risky than their in-office peers. HRM works: Companies using Living Security's Unify platform cut their risky user population by 50% and reduced high-risk behavior duration by 60%. From Awareness to Action: Making Human Risk Measurable Unlike traditional reports that focus on external threats or compliance audits, the 2025 State of Human Cyber Risk Report centers on internal risk behaviors and how they change with the right interventions. The report includes: A detailed breakdown of what constitutes human risk across behaviors, events, and attributes Analysis of how risk is distributed across roles, industries, and access levels Persona-based insights using behavioral alignment models Proof that HRM initiatives, especially behavior-triggered action plans, dramatically reduce organizational risk exposure A Call to Cybersecurity Leaders With budgets tightening and threats evolving, the stakes are clear: cybersecurity can no longer rely on awareness alone. Leaders must prioritize behavioral visibility, targeted action, and ROI-driven results. 'Cybersecurity is no longer just about technology, it's about behavior,' said Rose. 'If we don't understand who our riskiest users are, why they're at risk, and how to help them improve, we'll continue chasing symptoms instead of solving the root problem.' Looking Ahead These findings come at a time when AI agents and digital co-workers are entering the enterprise and the attack surface is evolving fast. As pioneers in Human Risk Management, Living Security sees this evolution clearly: the future of cyber resilience isn't just about managing human risk, it's about managing behavioral risk, wherever it originates. This report not only celebrates measurable progress on the human side, but also signals what comes next: a future where enterprises govern both humans and agents through shared visibility, standards, and accountability. About the Report The 2025 State of Human Cyber Risk Report was produced in partnership with the Cyentia Institute using anonymized data from Living Security's Unify platform over the last several years. It reflects hundreds of millions of real-world user events and decisions, collected and analyzed to provide a clear picture of how human risk shows up, and how it can be reduced. The full report is available for download at: For a deeper look at the findings, users can join a live webinar with Cyentia researchers and Living Security CEO Ashley Rose on July 23 at 3PM ET / 12PM PT by registering here. About Cyentia Institute The Cyentia Institute is a renowned research firm committed to providing high-quality, data-driven insights to help organizations enhance cybersecurity and effectively manage information risks. Through collaborations with leading industry and government entities, Cyentia continually advances cybersecurity knowledge and practice. About Living Security Living Security is the global leader in Human Risk Management (HRM), providing a risk-informed approach that meets organizations where they are—whether that's starting with AI-based phishing simulations, intelligent behavior-based training, or implementing a full HRM strategy that correlates behavior, identity, and threat data streams. Living Security's Unify platform delivers 3X more visibility into human risk than traditional, compliance-based training platforms by eliminating siloed data and integrating across the security ecosystem. The platform pinpoints the 8–12% of users who pose the greatest risk and automates targeted interventions in real time—reducing exposure to human risk by over 90%. Powered by AI, human analysis, and industry-wide threat telemetry, Unify transforms fragmented signals into intelligent, adaptive defense. Named a Global Leader in Human Risk Management by Forrester and trusted by enterprises like Unilever, Mastercard, Merck, and Abbott Labs, Living Security helps security teams move from awareness to action—driving measurable behavior change and proving impact at every stage of the journey. For more information, users can find them online at or follow on LinkedIn. Contact:Living Security PressLiving Securitymedia@ Photo:
Business Insider
22-07-2025
- Business
- Business Insider
New Report Reveals Just 10% of Employees Drive 73% of Cyber Risk
Austin, United States / TX, July 21st, 2025, CyberNewsWire Living Security, the global leader in Human Risk Management (HRM), today released the 2025 State of Human Cyber Risk Report, an independent study conducted by leading research firm Cyentia Institute. The report provides an unprecedented look at behavioral risk inside organizations and reveals how strategic HRM programs can reduce that risk 60% faster than traditional methods. Drawing on behavioral data from more than 100 enterprises and hundreds of millions of user events, the study offers a first-of-its-kind, data-driven map of where cyber risk actually lives in the workforce and how leading organizations are shrinking it. The report confirms a long-suspected but rarely proven reality: a small fraction of employees (just 10%) are responsible for 73% of risky behavior. According to the findings, it's clear that protecting the enterprise in 2025 means managing people, not just systems. 'Security teams have always known the human factor plays a critical role in breaches, but they've lacked the visibility to act on it,' said Ashley Rose, CEO and Co-founder of Living Security. 'Until now, most insights have relied on anecdotal evidence or narrow indicators like phishing clicks. This report changes that by providing hard data that shows exactly where risk lives, and what actually works to reduce it.' Key Findings from the Report: Human risk is concentrated, not widespread: Just 10% of employees are responsible for nearly three-quarters (73%) of all risky behavior. Visibility is alarmingly low: Organizations relying solely on security awareness training (SAT) have visibility into only 12% of risky behavior, compared to 5X that for mature HRM programs. Risk is often misidentified: Contrary to popular belief, remote and part-time workers are less risky than their in-office peers. HRM works: Companies using Living Security's Unify platform cut their risky user population by 50% and reduced high-risk behavior duration by 60%. From Awareness to Action: Making Human Risk Measurable Unlike traditional reports that focus on external threats or compliance audits, the 2025 State of Human Cyber Risk Report centers on internal risk behaviors and how they change with the right interventions. The report includes: A detailed breakdown of what constitutes human risk across behaviors, events, and attributes Analysis of how risk is distributed across roles, industries, and access levels Persona-based insights using behavioral alignment models Proof that HRM initiatives, especially behavior-triggered action plans, dramatically reduce organizational risk exposure A Call to Cybersecurity Leaders With budgets tightening and threats evolving, the stakes are clear: cybersecurity can no longer rely on awareness alone. Leaders must prioritize behavioral visibility, targeted action, and ROI-driven results. 'Cybersecurity is no longer just about technology, it's about behavior,' said Rose. 'If we don't understand who our riskiest users are, why they're at risk, and how to help them improve, we'll continue chasing symptoms instead of solving the root problem.' Looking Ahead These findings come at a time when AI agents and digital co-workers are entering the enterprise and the attack surface is evolving fast. As pioneers in Human Risk Management, Living Security sees this evolution clearly: the future of cyber resilience isn't just about managing human risk, it's about managing behavioral risk, wherever it originates. This report not only celebrates measurable progress on the human side, but also signals what comes next: a future where enterprises govern both humans and agents through shared visibility, standards, and accountability. About the Report The 2025 State of Human Cyber Risk Report was produced in partnership with the Cyentia Institute using anonymized data from Living Security's Unify platform over the last several years. It reflects hundreds of millions of real-world user events and decisions, collected and analyzed to provide a clear picture of how human risk shows up, and how it can be reduced. The full report is available for download at: For a deeper look at the findings, users can join a live webinar with Cyentia researchers and Living Security CEO Ashley Rose on July 23 at 3PM ET / 12PM PT by registering here. The Cyentia Institute is a renowned research firm committed to providing high-quality, data-driven insights to help organizations enhance cybersecurity and effectively manage information risks. Through collaborations with leading industry and government entities, Cyentia continually advances cybersecurity knowledge and practice. About Living Security Living Security is the global leader in Human Risk Management (HRM), providing a risk-informed approach that meets organizations where they are—whether that's starting with AI-based phishing simulations, intelligent behavior-based training, or implementing a full HRM strategy that correlates behavior, identity, and threat data streams. Living Security's Unify platform delivers 3X more visibility into human risk than traditional, compliance-based training platforms by eliminating siloed data and integrating across the security ecosystem. The platform pinpoints the 8–12% of users who pose the greatest risk and automates targeted interventions in real time—reducing exposure to human risk by over 90%. Powered by AI, human analysis, and industry-wide threat telemetry, Unify transforms fragmented signals into intelligent, adaptive defense. Named a Global Leader in Human Risk Management by Forrester and trusted by enterprises like Unilever, Mastercard, Merck, and Abbott Labs, Living Security helps security teams move from awareness to action—driving measurable behavior change and proving impact at every stage of the journey. Contact
Techday NZ
18-07-2025
- Business
- Techday NZ
Report finds 10% of staff cause 73% of risky cyber behaviour
New research from Living Security and Cyentia Institute indicates that a small proportion of employees are accountable for a significant majority of risky cyber behaviours, while most organisations remain unaware of the true scale of internal risk. Concentration of risk The 2025 State of Human Cyber Risk Report, based on behavioural data from more than 100 enterprises and hundreds of millions of user activities, has outlined how just 10% of employees are responsible for 73% of all risky behaviour within organisations. This concentration of risk challenges the common perception that cyber risk is broadly distributed across the workforce. The report provides detailed insights into where cyber risk is prevalent in today's enterprises and argues for a shift from systemic defences to targeted human risk management. Ashley Rose, Chief Executive Officer and Co-founder of Living Security, commented on the findings, stating: "Security teams have always known the human factor plays a critical role in breaches, but they've lacked the visibility to act on it. Until now, most insights have relied on anecdotal evidence or narrow indicators like phishing clicks. This report changes that by providing hard data that shows exactly where risk lives, and what actually works to reduce it." Visibility challenges One of the most significant takeaways from the report is the shortfall in visibility for many organisations. The analysis determined that those relying only on security awareness training (SAT) have the capacity to detect merely 12% of risky behaviour. In contrast, companies employing mature Human Risk Management (HRM) programmes detected five times as much risk. The study also revealed that risk is often misattributed. Remote and part-time workers were found to be less risky than in-office staff, contradicting some prevailing assumptions about offsite working arrangements. Effectiveness of targeted interventions Living Security reports that organisations utilising its Unify HRM platform managed to reduce their population of risky users by 50% and shorten the duration of high-risk behaviour by 60%. The report suggests that behaviour-triggered interventions are notably more effective than blanket awareness campaigns. The comprehensive study examines risk distribution by role, industry, and user access level, and provides persona-based insights using behavioural alignment models. It further concludes that targeted action plans, prompted by dynamic risk detection, can dramatically lower an organisation's exposure to internal threats. Rose asserts that a fundamental rehabilitation of cyber risk management is required, saying: "Cybersecurity is no longer just about technology, it's about behavior. If we don't understand who our riskiest users are, why they're at risk, and how to help them improve, we'll continue chasing symptoms instead of solving the root problem." Changing requirements The report comes at a time of rapidly changing enterprise environments, with AI-driven agents and digital co-workers broadening the digital attack surface. The findings recommend that security leaders transition from purely technical defences to approaches that prioritise visibility into user behaviour and enable targeted interventions. According to the report, detecting and acting on high-risk behaviours at the user level confers significant advantages in risk reduction speed and overall organisational security posture. The full report stresses the necessity of shared visibility and accountability for both human and non-human actors operating within the enterprise. The 2025 State of Human Cyber Risk Report was developed using anonymised data from the Unify platform collected over multiple years, offering a detailed look at how human risk is manifested and can be mitigated across various industries and organisational sizes. Follow us on: Share on:
Associated Press
28-04-2025
- Business
- Associated Press
Living Security's Unify Platform Just Got Smarter-3X More Visibility, Zero Blind Spots, and AI-Powered Adaptive Intelligence That Connects Your Siloed Security Data
AUSTIN, TX / ACCESS Newswire / April 28, 2025 / Living Security, the global leader in human risk defense, today unveils powerful adaptive intelligence capabilities within its Unify platform. By fusing human expertise from its Human Intelligence Team (HInT), advanced AI phishing simulations, and industry-wide threat telemetry, Unify now delivers a minimum of 3X more visibility into human risk compared to outdated security awareness tools. This advancement is validated by third-party research from Cyentia. Today's security leaders are navigating rapidly evolving and complex AI-driven threats. According to Cyentia's findings, most organizations only see about 30% of their human risk surface, leaving the majority of behavioral vulnerabilities completely unaddressed. Living Security's AI-powered HRM platform closes this gap by helping organizations see-and act on-the rest. Analyzing millions of daily signals across behavioral data, identity access, and external threat activity, Living Security's Unify platform provides security teams a complete, real-time picture of human risk and empowers organizations to detect and respond to human risk with precision and speed before it becomes a breach. 'The biggest cybersecurity risk isn't malware or zero-days-it's people,' said Ashley Rose, CEO of Living Security. 'Most security tools operate in silos, leaving leaders blind to the full picture of who's at risk and why. Unify closes that loop-connecting data, quantifying risk in real time, and automating action before threats escalate.' Despite over $200 billion spent annually on cybersecurity according to Gartner, many organizations still lack the ability to identify high-risk users-typically the 8-12% of employees whose access and behaviors make them most vulnerable. Identity and access management systems detect access anomalies, phishing tools monitor inboxes, and malware platforms flag endpoints-but none of them connect the dots to tell the whole story. Named a Global Leader in Human Risk Management by Forrester, Unify is the only platform that brings together identity, behavior, and threat intelligence giving customers over 90% reduction in exposure to human risk through real-time, automated interventions, according to Cyentia. 'That 90% drop isn't just a stat-it's millions saved, breaches avoided, and a workforce transformed into your strongest layer of defense,' said Mike Siegel, President of Living Security. 'With Unify, our customers turn human risk into clear, compelling metrics that leaders can act on. We deliver real-time, easy-to-digest intelligence that shows progress, proves impact, and drives alignment from the SOC to the C-suite.' The data is undeniable: Attackers already see the full picture. Now defenders can too. Living Security's Unify acts as a central intelligence layer, transforming fragmented security data into real-time, expert-driven insight. It delivers adaptive defense through AI-powered phishing simulations that mirror adversaries, are personalized to the individual, and evolve as tactics change. For teams lacking in-house expertise, Living Security's unique Human Intelligence Team (HInT) adds a human-led layer of deep analysis-bringing context, prioritization, and a laser focus on the users that matter most. HInT uncovers potential breaches by leveraging deep security expertise, real-time insights, and intelligence from Unify's data ecosystem to help organizations address critical blind spots before disruption to their business or brand reputation. Living Security's HInT service is now available for select customers. Visit Booth #4425 at RSA Conference for a live demo of Unify and see how Living Security is helping teams break silos, act faster, and build a defense that never stops working. About Living Security Living Security is the global leader in Human Risk Management (HRM), delivering 3X more visibility into human risk than compliance-based security training platforms. Living Security's Unify platform integrates identity, access, and threat activity to eliminate the chaos of siloed data-pinpointing the 8-12% of users who pose the greatest risk and automating the right response in real time. Powered by AI, human analysis, and industry-wide threat telemetry, Unify reduces exposure to human risk by over 90% and transforms fragmented signals into intelligent, adaptive defense. Named a Global Leader in Human Risk Management by Forrester and trusted by security-forward enterprises like Unilever, Mastercard, Merck, and Abbott Labs, Living Security helps organizations see clearly, act fast, and stay ahead of tomorrow's threats. For more information, visit and follow us on LinkedIn. Media Contact: [email protected] SOURCE: Living Security press release
