{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,3]],"date-time":"2026-07-03T16:24:57Z","timestamp":1783095897702,"version":"3.54.6"},"reference-count":133,"publisher":"Association for Computing Machinery (ACM)","issue":"10","content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Comput. Surv."],"published-print":{"date-parts":[[2026,7,31]]},"abstract":"<jats:p>Insider threats, originating from current or former employees, contractors and trusted business partners who are with authorised access to organisational resources continue to pose a critical security challenge across multiple sectors. These threats may be intentional (malicious) or unintentional (accidental) and are shaped by the interaction between technical and human factors. This systematic literature review analyses 121 studies published between 2014 and October 2025 to address two key research questions: (1) which human factors contribute to insider threats, and (2) whether existing technical methods, particularly machine learning approaches, have been applied to predict or detect insider threats on the basis of human factors. The review introduces a taxonomy of human factors influencing insider behaviour and provides an examination of technical approaches, including detection methods. The findings highlight a substantial gap in machine learning research directly linking human factors to insider threat detection, largely due to the absence of datasets that integrate behavioural and contextual human attributes. By synthesising current knowledge and identifying these limitations, this study outlines key challenges and research opportunities, underscoring the need for predictive models that capture the complex role of human factors in insider threats especially in unintentional insider threats.<\/jats:p>","DOI":"10.1145\/3798089","type":"journal-article","created":{"date-parts":[[2026,2,20]],"date-time":"2026-02-20T11:34:50Z","timestamp":1771587290000},"page":"1-37","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Integrating Human Factors into Insider Threat Detection \u2013 A Systematic Review"],"prefix":"10.1145","volume":"58","author":[{"ORCID":"https:\/\/orcid.org\/0009-0000-0750-9991","authenticated-orcid":false,"given":"Nadeeka","family":"Pathirana","sequence":"first","affiliation":[{"name":"School of Computing, Engineering and Technology, Robert Gordon University","place":["Aberdeen, United Kingdom of Great Britain and Northern Ireland"]}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5420-7945","authenticated-orcid":false,"given":"Ruby","family":"Roberts","sequence":"additional","affiliation":[{"name":"Aberdeen Business School, Robert Gordon University","place":["Aberdeen, United Kingdom of Great Britain and Northern Ireland"]}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6430-9558","authenticated-orcid":false,"given":"Harsha","family":"Kalutarage","sequence":"additional","affiliation":[{"name":"School of Computing, Engineering and Technology, Robert Gordon University","place":["Aberdeen, United Kingdom of Great Britain and Northern Ireland"]}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8718-0988","authenticated-orcid":false,"given":"Christopher D.","family":"McDermott","sequence":"additional","affiliation":[{"name":"School of Computing, Engineering and Technology, Robert Gordon University","place":["Aberdeen, United Kingdom of Great Britain and Northern Ireland"]}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2026,4,2]]},"reference":[{"key":"e_1_3_3_2_2","doi-asserted-by":"publisher","DOI":"10.1504\/IJISAM.2018.094777"},{"key":"e_1_3_3_3_2","doi-asserted-by":"publisher","DOI":"10.3390\/app10155208"},{"key":"e_1_3_3_4_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2025.3587114"},{"key":"e_1_3_3_5_2","doi-asserted-by":"publisher","DOI":"10.32604\/csse.2022.019938"},{"key":"e_1_3_3_6_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2022.103066"},{"key":"e_1_3_3_7_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2024.3369906"},{"key":"e_1_3_3_8_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2024.3369906"},{"key":"e_1_3_3_9_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2015.03.175"},{"key":"e_1_3_3_10_2","doi-asserted-by":"publisher","DOI":"10.1007\/s11276-024-03678-5"},{"key":"e_1_3_3_11_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICPCSN58827.2023.00050"},{"key":"e_1_3_3_12_2","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom63139.2024.00279"},{"key":"e_1_3_3_13_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2020.06.045"},{"key":"e_1_3_3_14_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2020.06.045"},{"key":"e_1_3_3_15_2","doi-asserted-by":"publisher","DOI":"10.4324\/9781315806624"},{"key":"e_1_3_3_16_2","doi-asserted-by":"publisher","DOI":"10.1109\/BigData.2018.8622529"},{"key":"e_1_3_3_17_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijcip.2018.12.001"},{"key":"e_1_3_3_18_2","doi-asserted-by":"publisher","DOI":"10.1109\/CISDA.2009.5356522"},{"key":"e_1_3_3_19_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2019.05.060"},{"key":"e_1_3_3_20_2","article-title":"Unintentional insider threats: A foundational study","author":"Bureau Federal Infrastructure Protection","year":"2013","unstructured":"Federal Infrastructure Protection Bureau. 2013. Unintentional insider threats: A foundational study. Software Engineering Institute Technical Report (2013).","journal-title":"Software Engineering Institute Technical Report"},{"key":"e_1_3_3_21_2","unstructured":"Verizon Business. 2024. 2024 Data Breach Investigations Report. Retrieved June 1 2024 from https:\/\/www.verizon.com\/business\/resources\/reports\/2024-dbir-data-breach-investigations-report.pdf"},{"key":"e_1_3_3_22_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-50439-7_22"},{"key":"e_1_3_3_23_2","article-title":"Analyzing Insider Threat Data in the MERIT Database","author":"Center The CERT Insider Threat","year":"2013","unstructured":"The CERT Insider Threat Center. 2013. Analyzing Insider Threat Data in the MERIT Database. Carnegie Mellon University, Software Engineering Institute\u2019s Insights (blog). Retrieved October 19, 2024 from https:\/\/insights.sei.cmu.edu\/blog\/analyzing-insider-threat-data-in-the-merit-database\/","journal-title":"Carnegie Mellon University, Software Engineering Institute\u2019s Insights (blog)"},{"key":"e_1_3_3_24_2","doi-asserted-by":"publisher","DOI":"10.1109\/BigData62323.2024.10825829"},{"key":"e_1_3_3_25_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-73821-5_7"},{"key":"e_1_3_3_26_2","article-title":"Common sense guide to mitigating insider threats","author":"Collins Matthew","year":"2016","unstructured":"Matthew Collins, Michael Theis, Randall Trzeciak, Jeremy Strozer, Jason Clark, Daniel Costa, Tracy Cassidy, Michael Albrethsen, and Andrew Moore. 2016. Common sense guide to mitigating insider threats. The CERT Insider Threat Center, Technical Report CMU\/SEI-2015-TR-010.","journal-title":"The CERT Insider Threat Center, Technical Report CMU\/SEI-2015-TR-010"},{"key":"e_1_3_3_27_2","article-title":"CERT Definition of \u2019Insider Threat\u2019 - Updated","author":"Costa Daniel","year":"2017","unstructured":"Daniel Costa. 2017. CERT Definition of \u2019Insider Threat\u2019 - Updated. Carnegie Mellon University, Software Engineering Institute\u2019s Insights (blog). Retrieved October 9, 2024 from https:\/\/insights.sei.cmu.edu\/blog\/cert-definition-of-insider-threat-updated\/","journal-title":"Carnegie Mellon University, Software Engineering Institute\u2019s Insights (blog)"},{"key":"e_1_3_3_28_2","doi-asserted-by":"publisher","DOI":"10.1109\/InC457730.2023.10263010"},{"key":"e_1_3_3_29_2","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2025.3574417"},{"key":"e_1_3_3_30_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.101908"},{"key":"e_1_3_3_31_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.jisa.2022.103167"},{"key":"e_1_3_3_32_2","unstructured":"Human Factors and Ergonomics Society. 2024. What Is Human Factors and Ergonomics? Retrieved May 10 2024 from https:\/\/www.hfes.org\/About\/What-Is-Human-Factors-and-Ergonomics"},{"key":"e_1_3_3_33_2","unstructured":"\u00c1 F\u00fcl\u00f6p L. Kov\u00e1cs T. Kurics and E. Windhager-Pokol. 2016. Balabit mouse dynamics challenge data set. Retrieved May 28 2024 from b.com\/balabit\/Mouse-Dynamics-Challenge"},{"key":"e_1_3_3_34_2","doi-asserted-by":"publisher","DOI":"10.1080\/08874417.2023.2267510"},{"key":"e_1_3_3_35_2","doi-asserted-by":"publisher","unstructured":"Haywood Gelman John D. Hastings and David Kenley. 2025. An ethically grounded LLM-based approach to insider threat synthesis and detection. (2025) 1\u20136. DOI:10.1109\/CARS67163.2025.11337953","DOI":"10.1109\/CARS67163.2025.11337953"},{"key":"e_1_3_3_36_2","doi-asserted-by":"publisher","DOI":"10.1186\/s41044-016-0006-0"},{"key":"e_1_3_3_37_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.102066"},{"key":"e_1_3_3_38_2","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSPW67616.2025.00080"},{"key":"e_1_3_3_39_2","doi-asserted-by":"publisher","unstructured":"Anand K. Gramopadhye and Colin G. Drury. 2000. Human factors in aviation maintenance: How we got to where we are. International Journal of Industrial Ergonomics 26 2 (2000) 125\u2013131. DOI:10.1016\/S0169-8141(99)00062-1","DOI":"10.1016\/S0169-8141(99)00062-1"},{"key":"e_1_3_3_40_2","doi-asserted-by":"publisher","DOI":"10.1109\/CSR57506.2023.10224926"},{"key":"e_1_3_3_41_2","doi-asserted-by":"publisher","DOI":"10.1145\/3332448.3332458"},{"key":"e_1_3_3_42_2","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-61692-245-0.ch007"},{"key":"e_1_3_3_43_2","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2014.256"},{"key":"e_1_3_3_44_2","doi-asserted-by":"publisher","DOI":"10.1109\/SPW.2014.39"},{"key":"e_1_3_3_45_2","doi-asserted-by":"publisher","DOI":"10.1109\/MDM61037.2024.00053"},{"key":"e_1_3_3_46_2","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-7998-7705-9.ch087"},{"key":"e_1_3_3_47_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.03.006"},{"issue":"1","key":"e_1_3_3_48_2","first-page":"54","article-title":"The wolf Of SUTD (TWOS): A dataset of malicious insider threat behavior based on a gamified competition.","volume":"9","author":"Harilal Athul","year":"2018","unstructured":"Athul Harilal, Flavio Toffalini, Ivan Homoliak, John Henry Castellanos, Juan Guarnizo, Soumik Mondal, and Mart\u00edn Ochoa. 2018. The wolf Of SUTD (TWOS): A dataset of malicious insider threat behavior based on a gamified competition. Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications 9, 1 (2018), 54\u201385.","journal-title":"Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications"},{"key":"e_1_3_3_49_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.jisa.2022.103378"},{"key":"e_1_3_3_50_2","doi-asserted-by":"publisher","DOI":"10.1109\/DSC53577.2021.00089"},{"key":"e_1_3_3_51_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-41932-9_11"},{"key":"e_1_3_3_52_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10586-022-03668-2"},{"key":"e_1_3_3_53_2","doi-asserted-by":"publisher","DOI":"10.1057\/sj.2015.36"},{"key":"e_1_3_3_54_2","doi-asserted-by":"publisher","DOI":"10.1145\/3303771"},{"key":"e_1_3_3_55_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.isatra.2023.06.030"},{"key":"e_1_3_3_56_2","doi-asserted-by":"publisher","DOI":"10.1109\/ISCC53001.2021.9631538"},{"key":"e_1_3_3_57_2","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2024.3503057"},{"issue":"1","key":"e_1_3_3_58_2","first-page":"4","article-title":"Insiders and insider threats-an overview of definitions and mitigation techniques.","volume":"2","author":"Hunker Jeffrey","year":"2011","unstructured":"Jeffrey Hunker and Christian W. Probst. 2011. Insiders and insider threats-an overview of definitions and mitigation techniques. Journal of Wireless Mobile Networks, Ubiquitous Computing and Dependable Applications 2, 1 (2011), 4\u201327.","journal-title":"Journal of Wireless Mobile Networks, Ubiquitous Computing and Dependable Applications"},{"key":"e_1_3_3_59_2","unstructured":"IARPA. 2023. Scientific advances to Continuous Insider Threat Evaluation. Retrieved October 19 2024 from https:\/\/www.iarpa.gov\/research-programs\/scite"},{"key":"e_1_3_3_60_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.asej.2024.103068"},{"key":"e_1_3_3_61_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2020.10.012"},{"key":"e_1_3_3_62_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.tele.2021.101670"},{"key":"e_1_3_3_63_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cie.2019.106004"},{"key":"e_1_3_3_64_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-025-01002-6"},{"key":"e_1_3_3_65_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.jfranklin.2023.09.004"},{"key":"e_1_3_3_66_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10111-021-00690-z"},{"issue":"4","key":"e_1_3_3_67_2","first-page":"46","article-title":"SoK: A systematic review of insider threat detection.","volume":"10","author":"Kim Aram","year":"2019","unstructured":"Aram Kim, Junhyoung Oh, Jinho Ryu, Jemin Lee, Kookheui Kwon, and Kyungho Lee. 2019. SoK: A systematic review of insider threat detection. Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications 10, 4 (2019), 46\u201367.","journal-title":"Journal of Wireless Mobile Networks, Ubiquitous Computing, and Dependable Applications"},{"key":"e_1_3_3_68_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2990195"},{"key":"e_1_3_3_69_2","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom63139.2024.00315"},{"key":"e_1_3_3_70_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2024.3404814"},{"key":"e_1_3_3_71_2","first-page":"41","article-title":"Detection of insider threats using deep learning: A review","author":"Lavanya P.","year":"2022","unstructured":"P. Lavanya and V. S. Shankar Sriram. 2022. Detection of insider threats using deep learning: A review. In Computational Intelligence in Data Mining: Proceedings of ICCIDM 2021. 41\u201357.","journal-title":"Computational Intelligence in Data Mining: Proceedings of ICCIDM 2021"},{"key":"e_1_3_3_72_2","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2024.3430106"},{"key":"e_1_3_3_73_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICAIBD57115.2023.10206282"},{"key":"e_1_3_3_74_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICDMW.2018.00014"},{"key":"e_1_3_3_75_2","doi-asserted-by":"publisher","DOI":"10.1145\/3290688.3290692"},{"key":"e_1_3_3_76_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICNIDC.2018.8525804"},{"key":"e_1_3_3_77_2","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom50675.2020.00153"},{"issue":"1","key":"e_1_3_3_78_2","first-page":"1","article-title":"Review and insight on the behavioral aspects of cybersecurity","volume":"3","author":"Lahcen Rachid Ait Maalem","year":"2020","unstructured":"Rachid Ait Maalem Lahcen, Bruce Caulkins, Ram Mohapatra, and Manish Kumar. 2020. Review and insight on the behavioral aspects of cybersecurity. Cybersecurity 3, 1 (2020), 1\u201318.","journal-title":"Cybersecurity"},{"key":"e_1_3_3_79_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10869-023-09885-9"},{"key":"e_1_3_3_80_2","doi-asserted-by":"publisher","DOI":"10.1109\/IBCAST51254.2021.9393281"},{"key":"e_1_3_3_81_2","doi-asserted-by":"publisher","DOI":"10.1109\/DSC53577.2021.00035"},{"issue":"3","key":"e_1_3_3_82_2","article-title":"Industrial espionage from a human factor perspective.","volume":"16","author":"M\u00e9sz\u00e1ros Alexandra \u00c1gnes","year":"2023","unstructured":"Alexandra \u00c1gnes M\u00e9sz\u00e1ros and Anik\u00f3 Kelemen-Erd\u0151s. 2023. Industrial espionage from a human factor perspective. Journal of International Studies (2071-8330) 16, 3 (2023), 97\u2013116. https:\/\/www.ceeol.com\/search\/article-detail?id=1192959","journal-title":"Journal of International Studies (2071-8330)"},{"key":"e_1_3_3_83_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-26845-8_2"},{"key":"e_1_3_3_84_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-50309-3_14"},{"key":"e_1_3_3_85_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10586-024-04507-2"},{"key":"e_1_3_3_86_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-07620-1_24"},{"key":"e_1_3_3_87_2","doi-asserted-by":"publisher","DOI":"10.1088\/1742-6596\/1299\/1\/012046"},{"key":"e_1_3_3_88_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-12172-2_20"},{"key":"e_1_3_3_89_2","doi-asserted-by":"publisher","DOI":"10.1136\/bmj.n160"},{"key":"e_1_3_3_90_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2023.119925"},{"key":"e_1_3_3_91_2","first-page":"149","article-title":"Hierarchical models","author":"Penny Will","year":"2007","unstructured":"Will Penny and R. Henson. 2007. Hierarchical models. Statistical Parametric Mapping (2007), 149\u2013155. https:\/\/www.fil.ion.ucl.ac.uk\/wpenny\/publications\/Ch13.pdf","journal-title":"Statistical Parametric Mapping"},{"key":"e_1_3_3_92_2","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2009.2039591"},{"key":"e_1_3_3_93_2","doi-asserted-by":"publisher","DOI":"10.1007\/s10111-021-00683-y"},{"key":"e_1_3_3_94_2","volume-title":"Proceedings of the 31st Australasian Conference on Information Systems","author":"Prabhu Sunitha","year":"2020","unstructured":"Sunitha Prabhu and Nik Thompson. 2020. A unified classification model of insider threats to information security. In Proceedings of the 31st Australasian Conference on Information Systems. DOI:20.500.11937\/81763"},{"key":"e_1_3_3_95_2","doi-asserted-by":"publisher","DOI":"10.1080\/19393555.2021.1971802"},{"key":"e_1_3_3_96_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103350"},{"key":"e_1_3_3_97_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.jisa.2023.103434"},{"key":"e_1_3_3_98_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2020.11.009"},{"key":"e_1_3_3_99_2","doi-asserted-by":"publisher","DOI":"10.1109\/CSNet59123.2023.10339777"},{"key":"e_1_3_3_100_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICISS49785.2020.9315932"},{"key":"e_1_3_3_101_2","doi-asserted-by":"publisher","DOI":"10.1016\/S1353-4858(20)30092-1"},{"key":"e_1_3_3_102_2","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2024.3353929"},{"key":"e_1_3_3_103_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2024.04.033"},{"key":"e_1_3_3_104_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2019.03.024"},{"key":"e_1_3_3_105_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.jisa.2017.11.001"},{"key":"e_1_3_3_106_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-23644-0_10"},{"key":"e_1_3_3_107_2","doi-asserted-by":"publisher","DOI":"10.3390\/electronics9091460"},{"key":"e_1_3_3_108_2","doi-asserted-by":"publisher","DOI":"10.1109\/TTS.2022.3192767"},{"key":"e_1_3_3_109_2","doi-asserted-by":"publisher","DOI":"10.1109\/CyberSA52016.2021.9478213"},{"key":"e_1_3_3_110_2","article-title":"Computer intrusion: Detecting masquerades","author":"Schonlau Matthias","year":"2001","unstructured":"Matthias Schonlau, William DuMouchel, Wen-Hua Ju, Alan F. Karr, Martin Theus, and Yehuda Vardi. 2001. Computer intrusion: Detecting masquerades. Statistical Science 16, 1 (2001), 58\u201374. http:\/\/www.jstor.org\/stable\/2676780","journal-title":"Statistical Science"},{"key":"e_1_3_3_111_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-77322-3_10"},{"key":"e_1_3_3_112_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2019.05.043"},{"key":"e_1_3_3_113_2","unstructured":"Statista. 2024. Retrieved February 1 2024 from https:\/\/business.sharpusa.com\/simply-smarter-blog\/to-err-is-human-unfortunately-5-key-findings-from-the-2023-verizon-data-breach-investigations-report"},{"key":"e_1_3_3_114_2","unstructured":"Statista. 2024. Most significant cybersecurity threats in organizations worldwide according to Chief Information Security Officers (CISO) as of February 2023. Retrieved February 1 2024 from https:\/\/www.statista.com\/statistics\/1350460\/cybersecurity-threats-at-companies-worldwide-cisos\/"},{"key":"e_1_3_3_115_2","unstructured":"Statista. 2024. Most significant cybersecurity threats in organizations worldwide according to Chief Information Security Officers (CISO) as of February 2023. Retrieved February 1 2024 from https:\/\/istari-global.com\/insights\/spotlight\/2023-insider-threat-report\/#::text=74%25%20of%20respondents%20feel%20moderately disruption%20or%20outage%20(41%25)."},{"key":"e_1_3_3_116_2","doi-asserted-by":"publisher","DOI":"10.26500\/JARSSH-06-2021-0402"},{"key":"e_1_3_3_117_2","doi-asserted-by":"publisher","DOI":"10.1109\/CISCE52179.2021.9445898"},{"key":"e_1_3_3_118_2","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom63139.2024.00037"},{"key":"e_1_3_3_119_2","doi-asserted-by":"publisher","DOI":"10.1109\/HONET59747.2023.10374733"},{"key":"e_1_3_3_120_2","doi-asserted-by":"publisher","DOI":"10.1057\/sj.2012.1"},{"key":"e_1_3_3_121_2","doi-asserted-by":"publisher","DOI":"10.3390\/app132413021"},{"key":"e_1_3_3_122_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102314"},{"key":"e_1_3_3_123_2","doi-asserted-by":"publisher","DOI":"10.1136\/bmjqs-2015-005074"},{"key":"e_1_3_3_124_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2024.3373265"},{"key":"e_1_3_3_125_2","doi-asserted-by":"publisher","DOI":"10.1108\/IMDS-12-2018-0546"},{"key":"e_1_3_3_126_2","doi-asserted-by":"publisher","DOI":"10.1109\/TNSE.2024.3519155"},{"key":"e_1_3_3_127_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2023.103665"},{"key":"e_1_3_3_128_2","doi-asserted-by":"publisher","DOI":"10.1038\/s41598-025-12063-x"},{"key":"e_1_3_3_129_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-60585-2_23"},{"key":"e_1_3_3_130_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICTAI50040.2020.00102"},{"key":"e_1_3_3_131_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2021.102221"},{"key":"e_1_3_3_132_2","doi-asserted-by":"publisher","DOI":"10.1109\/BigData47090.2019.9005589"},{"key":"e_1_3_3_133_2","doi-asserted-by":"publisher","DOI":"10.1109\/BigDataSecurityHPSCIDS54978.2022.00013"},{"key":"e_1_3_3_134_2","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2024.3393491"}],"container-title":["ACM Computing Surveys"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3798089","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,10]],"date-time":"2026-04-10T20:43:19Z","timestamp":1775853799000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3798089"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,4,2]]},"references-count":133,"journal-issue":{"issue":"10","published-print":{"date-parts":[[2026,7,31]]}},"alternative-id":["10.1145\/3798089"],"URL":"https:\/\/doi.org\/10.1145\/3798089","relation":{},"ISSN":["0360-0300","1557-7341"],"issn-type":[{"value":"0360-0300","type":"print"},{"value":"1557-7341","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026,4,2]]},"assertion":[{"value":"2024-12-19","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2026-02-04","order":2,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2026-04-02","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}