What characterizes a disgruntled insider threat?

A disgruntled insider threat is characterized by an individual within the organization who harbors resentment or dissatisfaction, which could drive them to misuse their authorized access to systems or data. This type of insider is particularly concerning because they often possess insight into the organization's operations, security protocols, and vulnerabilities, making their potential for harm significant. Their motivation may stem from perceived injustices, grievances related to their employment, or personal issues, leading them to intentionally sabotage, steal data, or disrupt normal activities within the organization.

The other options do not accurately define a disgruntled insider threat. An external hacker is someone who operates from outside the organization and typically does not have legitimate access, while an insider causing harm accidentally lacks the intent to cause disruption. Lastly, a general data breach incident does not specify whether the threat actor is an insider or outsider and does not capture the specific motivations that distinguish disgruntled insiders.