The document defines and describes several types of cyber threat actors: hacktivists who conduct cyber protests; cyber terrorists who use networks to spread propaganda and plan attacks; organized hackers who target networks for financial gain through theft of personally identifiable or financial data; script kiddies who have little skill and rely on pre-existing tools; insider threats who are current or former employees with malicious intent; and state-sponsored hackers directed by governments to access other nations' classified information.