Challenge
In 2025, a major U.S. retail grocery chain engaged AT-RISK’s Global Risk Intelligence (GRI) team to conduct due diligence on a former employee who may have posed a malicious insider threat by compromising the company’s network prior to termination. The organization required assessment of potential ongoing cybersecurity and physical security risks associated with a former employee, including concerns related to insider threat activity, employee safety, and potential disruption to IT infrastructure.

Solution
The GRI team conducted an in-depth investigation, designating the individual as a person of interest (POI). This included OSINT research and dark web monitoring to assess potential threat activity and identify any associated risk indicators.

Success
The investigation identified behavioral concerns suggesting potential cybersecurity and physical risk, including threats against employees. It also uncovered previously unknown sensitive information and personally identifiable information (PII) related to current and former employees. These findings highlighted an unrecognized cybersecurity vulnerability and informed the client’s decision to pursue behavioral threat assessment and management (BTAM) consultation.