An employee or authorized user who inadvertently causes security incidents or data breaches through negligence, mistakes, or lack of awareness rather than malicious intent.
Unintentional insiders represent the majority of insider incidents, often caused by human error, inadequate training, or falling victim to social engineering. While not malicious, their actions can be just as damaging as intentional threats, making security awareness training and user-friendly security controls crucial.