BY KEVIN WETHINGTON
I reviewed the Verizon 2023 Data Breach Investigations Report (DBIR) in detail and wanted to summarize and share key points from my perspective:
First, the summary pared down with some commentary from me:
- “Business Email Compromise (BEC) attacks (which are in essence pretexting attacks) have almost doubled” since the last report.
- I recently wrote a blog post highlighting the criticality of the human element in cybersecurity—the 2023 DBIR reports “74% of all breaches include the human element.”
- No big surprises here: “83% of breaches involved External actors and the primary motivation for attacks continues to be overwhelmingly financial driven, at 95% of breaches.”
- Organized crime was the “top performer” in terms of threat actors.
- “The three primary ways in which attackers access an organization are stolen credentials, phishing and exploitation of vulnerabilities.”
- While still at the top, ransomware “did not actually grow, but it did hold statistically steady at 24% (of breaches). Ransomware is ubiquitous among organizations of all sizes and in all industries.” (emphasis mine)
- The most attacked Assets are Servers.
Did you catch that quote at the top of this post (and at the top of the DBIR)? It is so applicable to our responsibilities in cybersecurity: stay enthusiastic out there!
Join Kevin Wethington, ATC Cyber Guru and Principal Consultant, and Doug Neiheisel, ATC Delta Team Lead, for ATC’s first installment of the “Let’s Lock It Down” Insights Series. During this 30-minute webinar, Neiheisel and Wethington will discuss the recent Verizon 2023 Data Breach Report. Wethington will provide perspective and insights on the report’s findings and discuss current cyber trends. Attendees will have the opportunity to interact and ask questions.
When: July 20th, 2023 | 1:30 p.m.