Security risks within organizations include fraudulent transactions, unauthorized access to data and files, and physical theft or damage of equipment. Fraud is often committed by employees when security and internal controls are lax, such as by entering fictitious transactions without special technical knowledge. Password protection is the most common method to protect corporate data, but fraudulent transactions can still be carried out by unauthorized users who gain access using another user's login details. Other risks include Trojan horses, backdoors, software piracy, and theft of computer time by hackers.