Resources

Client Alerts, News Articles, Blog Posts, & Multimedia

Everything you need to know about BMD and the industry.

The Rising Threat from Insiders – Get Your House in Order

Client Alert
November 16, 2021

What is Insider Threat?

As its name implies, an ‘Insider Threat’ originates inside an organization. An ‘insider’ is any person who has or had authorized access to or knowledge of an organization’s resources, including personnel, facilities, information, equipment, networks, and systems. ‘Insider threat’ can manifest from malicious, complacent, negligent or unintentional acts that negatively affect the integrity, confidentiality, and availability of the organization, its data, personnel, or facilities. Certainly, ‘Insider Threat’ can be an activity by a bad actor employee, but can also arise from an inadvertent or unknowing action inside an organization (such as an employee who unintentionally opens a phishing email or clicks on a malicious link).

Rising Frequency; Rising Costs.

Protecting against ‘Insider Threat’ is a data security concern for all organizations. The realities facing organizations today include:

  • The frequency and cost of preventing insider attacks is rising;
  • User negligence is the most common cause of a data breach; and
  • Insider threat deterrence must become a key element in a cybersecurity posture.

According to a 2020 study[1], the average global cost of ​insider threats​ rose by ​31% in two years and the frequency of these incidents spiked by ​47%​ in the same time period. The risk is also present for small and medium sized businesses (SMBs). While 72% of organizations reported an increase in insider attacks in 2020, 66% of key decision makers in SMBs do not think breaches are likely to occur. Only 14% of SMBs have any kind of breach defenses in place; the rest are vulnerable to potentially devastating cyberattacks[2]. While daunting, the reality of modern business dictates that companies of all sizes, in all industries, must be cognizant of cybersecurity issues and prepare accordingly.

How can your company guard against Insider Threat?

The following is a brief list of action items your company should implement to address ‘Insider Threat’:

  • Put it in writing – An organization’s security policy should include procedures to prevent and detect misuse of company resources, guidelines for conducting insider investigations, and the potential consequences to the individual. Written policies not only preserve continuity, but also clearly outline rules and expectations in the organization.
  • Train and educate – The Identity Management Institute states that employee education remains key to breach prevention, including cybersecurity awareness during onboarding and routine drills to practice attack and breach responses.
  • Dictate Acceptable Use – An organization should detail an organization’s rules and expectations regarding technology use. This includes considering acceptable behavior on networks and devices.
  • Be transparent about employee privacy expectations - Organizations need to balance reducing insider threats and protecting employee privacy. Communicate and educate employees regarding the security policy and IT rules. Explain the program's objectives, while training employees about their role in security.
  • Get Technical – Invest in IT and consult with legal and technical cybersecurity professionals to find a solution that works for your organization.

Prudent businesses will create and maintain written policies as it relates to cybersecurity and data protection. BMD can assist in crafting the policies and identifying proper security frameworks and connecting you with technical experts to implement. 

If you have any questions about whether your cybersecurity risks, and whether your business is protected, please contact BMD’s Cybersecurity Practice Leaders, Brandon Pauley at btpauley@bmdllc.com or Kyle Johnson at kajohnson@bmdllc.com.

[1] https://www.proofpoint.com/uk/resources/threat-reports/2020-cost-of-insider-threats and Cybersecurity Insiders’ 2020 Insider Threat Report.

[2] https://identitymanagementinstitute.org/government-cybersecurity-and-insider-threats/

CybersecurityBrandon Pauley
Client Alert

Client Alert: AAA Introduces AI-Assisted Arbitrator for Certain Disputes

April 7, 2026The American Arbitration Association has introduced an AI-assisted arbitration platform designed to streamline certain document-based disputes. While a human arbitrator still makes the final decision, the technology can improve efficiency, reduce costs, and accelerate case resolution. Companies should weigh these benefits against considerations such as transparency, risk, and contractual requirements before adopting AI-assisted arbitration.Client Alert

Quiet Hours Texts and TCPA Claims: Consent Remains King as Courts Divide on Text Messages

March 31, 2026Businesses face increasing TCPA lawsuits over off-hours marketing texts, but recent court decisions highlight strong defenses. Clear consumer consent and updated terms and conditions can defeat many claims, while a growing number of courts are finding that text messages are not “telephone calls” under the statute. Proactive compliance measures, including clickwrap agreements and forum-selection clauses, are critical to reducing risk.Client Alert

New Ohio Reporting Requirements for Non-Residential Contractors

March 18, 2026Ohio’s E-Verify Workforce Integrity Act, effective March 19, 2026, requires all nonresidential construction companies, subcontractors, and labor brokers to use E-Verify to confirm employee work eligibility on projects across the state. The law applies regardless of company size and carries financial penalties and potential restrictions on future state contracts for noncompliance. Some uncertainty remains around requirements for existing employees, making early compliance planning important.Client Alert

DOT Non-Domiciled CDL Rule

March 11, 2026A new rule from the Federal Motor Carrier Safety Administration (FMCSA) will significantly narrow eligibility for non-domiciled Commercial Driver’s Licenses (CDLs) beginning March 16, 2026. The rule limits eligibility to holders of H-2A, H-2B, and E-2 visas and eliminates Employment Authorization Documents (EADs) as qualifying proof of work authorization. As a result, many lawfully present and work-authorized immigrants, including refugees, asylees, DACA recipients, and Temporary Protected Status holders, will no longer be able to obtain or renew a non-domiciled CDL. The change is expected to affect roughly 194,000 drivers nationwide and has prompted multiple legal challenges, including a pending emergency stay request before the United States Court of Appeals for the District of Columbia Circuit.Client Alert

FinCEN Residential Real Estate Reporting Rule Now in Effect

March 6, 2026FinCEN’s new Residential Real Estate Reporting Rule, effective March 1, 2026, requires certain real estate transfers to be reported to combat financial crimes. Transfers of residential property to entities or trusts without financing may require a Real Estate Report.
Older posts