I was wondering if anyone has an opinion of the biggest threat to a networks security? Do you believe it's from an internal attack or an external attack.

Internal.

The end users know "what's worth what" and will often not even balk at the idea of snooping around seomeone else's files just because they can.

Tighten down the in-house security first and think about outside threats after you're satisfied with it.

Remember there's no such thing as a foolproof system.

You just have to draw the line as to when to stop deploying security measures. Some influencing factors are internal politics, money (of course), nature of assets protected, usability of the system.

IMO, unpatched servers are the biggest risk. Look at slammer and IIS with no lockdown tool running. Not only do they compromise your data but they also act as zombies for huge DDOS attacks. So, I'd have to go with external.

USERS!!!

Users are the biggest potential threat to any given network.

It's users who load unauthorized software. It's users who open potential holes in your security. It's users who don't follow the set forth rules for network usage.

No users, no problems.
Know users, know problems.

Visualize Whirled Peas,

Kenny P.
Roadkill on the Information Super-Highway

Incompetent sysadmins.. that's a threat.
And then there are users installing all kind of crapware on their machines.
Oh, don't forget blank admin passwords during system install...

A server that isn't protected under lock and key is the biggest security risk. You can firewall and password protect it to no end, but it's meaningless if somebody has access to the system console.

The advice you've gotten so far is right on the mark, IMHO. There's a slight threat of external attack, which is mitigated by making sure your servers are properly secured and patched; but the biggest risk is internal, from users who either think they know it all or know nothing and are not afraid to show it.
:(

incompotant sysadmins and default passwords or easy passwords, aka 1234, password. then there is the problem of to many hands in the pot at once..to many people with access to the same sensitive data, and then start beliving that it's not sensitive any more and start checking in at home, talking about it with others around the office and what not. oh and another good threat is unknown modems on the network....alot of computers have modems that are pluged into a phone line, get access to the modem, get access to the network, and it's even harder to trace, (aka war dailing to find the modems, put in 100 phone #'s if there is a computer there try to exploit it.

both but more on internal.. like inside information could get out to a hacker on purpose allowijng outside to get in all because of a insider..

Or not shredding up important documents before throwing them away ... passwords, logs, etc....

Insiders (users) Weak PASSWORDS! using the same ones or ez ones or telling other people it.

running windows ... :D :D :D (had to say it LOL)