A real-world insider attack and its implications: a member of the IAM team leveraged their privileges to start disabling accounts in Active Directory. The implicit trust bypassed multiple security controls; this attack highlights the challenges associated with detecting insider threats. This session provides deep insights into the insider attack, the implications on cyber defense, and strategies for defensive countermeasures against this stealthy attack.