Which of the following represents a typical method of an insider threat?

The correct answer is the example of data manipulation from a trusted employee. Insider threats involve individuals within an organization who have legitimate access to systems and data, making their actions potentially more damaging since they understand the internal environment and protocols. A trusted employee can leverage their access to intentionally manipulate, steal, or destroy data, posing significant risks to the organization.

In the context of cybersecurity, an insider threat is particularly troubling because it can be difficult to detect and prevent. Employees who are authorized to handle and view sensitive information may misuse their privileges for personal gain or to harm the organization.

The other choices represent different types of security threats. A malicious software attack from a remote location implies an external threat rather than one from within the organization. Unauthorized access from an external hacker does not involve internal personnel and, like the previous option, is an example of an external threat. Use of malware for phishing also characterizes external threats aimed at deceiving individuals to provide sensitive information or access, rather than being perpetrated by someone who already has trusted access within the organization.