The Office of Management and Budget has found that 19 percent of reported cybersecurity incidents in fiscal year 2012 agencies came from internal policy violations, GovWin reports.
OMB also found that 18 percent of federal incident reports involve malicious codes; 16 percent cover lost or stolen equipment; and 6 percent came from from suspicious network activity.
Other reports stemmed from social engineering, improper usage, unauthorized access and denial of service.
OMB’s Federal Information Security Management Act report to Congress also found an increase in the number of incidents reported by federal agencies to the U.S.-Computer Emergency Readiness Team.
The Defense Department was the agency with the most reported incidents in 2012, followed by the Department of Homeland Security and then the departments of Treasury, Justice and Energy.