A Chief Information Security Officer (CISO) wants to explicitly raise awareness about the increase of ransomware-as-a-service in a report to the management team. Which of the following best describes the threat actor in the CISO's report?

An insider threat refers to individuals within an organization who misuse their access to harm the organization, whether intentionally or unintentionally. While insider threats can pose significant security risks, they do not align with the concept of ransomware-as-a-service, which is typically executed from external criminal entities rather than internal personnel.

Hacktivists are motivated by political or social causes and often aim to disrupt services or leak information to promote their agenda. Unlike organized crime, which focuses on financial gain through ransomware, hacktivists typically do not engage in ransomware-as-a-service activities, as their actions are more ideologically driven rather than profit-oriented.

Nation-state actors engage in cyber operations that align with their geopolitical objectives, often involving espionage or sabotage. While some nation-state actors may use ransomware, the term ransomware-as-a-service is more closely associated with criminal enterprises that prioritize financial profit, distinguishing them from the strategic motives of nation-state actors.