Which threat category includes risks arising from trusted insiders who misuse their access?

Trusted insiders who misuse their access create a unique risk because they already operate with legitimate credentials and visibility into the system. Insider attacks describe this scenario: employees, contractors, or partners abusing privileges to steal data, sabotage operations, or bypass controls. This distinguishes it from external-focused threats like APTs (stealthy campaigns from outside), cloud computing threats (risks in cloud configurations and services), and web application threats (exploits targeting web apps). By focusing on the misuse of trusted access, this category directly captures the danger posed by insiders who can access sensitive systems and data, making it the best fit.