Very interesting, as it highlights the three major issues of security:

1. The enemy within.
2. Physical security
3. Network/systems security

I also find it interesting that the first case has a crude average of $90 per hit. I would not be surprised to find that there is an internal security reporting threshold of $100 Obviously, an insider will find these kind of things, so I always think it wise to have a few "random" selections in your audit reports.

Cheers