We need to have one not-so-ethical end user on one of the servers. This may not be too difficult. An employee may be disgruntled, a less secure system may be compromised, a number of things may have happened.
At any rate, let’s say a user mrgray has questionable motives. mrgray has an account on a server that has no sensitive data, perhaps an experimentation server. Nonetheless, the server is backed up the same way as all the other servers.