A substantial 26% of cyber incidents in businesses over the last two years have been found to be the result of intentional security protocol violations by employees. This figure closely rivals the 20% attributed to external hacking attempts.
Source: Infosecurity