Verizon just published their annual Data Breach Investigations Report (DBIR), one of the most comprehensive investigations into cybersecurity incidents and breaches, identifying almost 2000 confirmed breaches across all industries in the last year. One of the reasons this report is so valuable is because Verizon does a great job of collecting vast amounts of real incident data, and Skycure is proud to have contributed to this effort from our own global database of incidents.
Here are a few interesting statistics brought to light in this report:
- Top industries affected by breaches are Finance (24%) and Healthcare (15%), followed by Retail and Accommodation, combined for another 15%.
- 66% of malware was installed via malicious email attachments.
- 73% of breaches were financially motivated.
- 81% of hacking-related breaches leveraged stolen or weak passwords.
- 51% (OVER HALF) of breaches included malware.
This thorough round-up of incidences provides an important perspective about what is really happening in the world of cybersecurity, and how the trends are evolving from year to year.
The report indicates that although the nature of specific types of attacks is not changing dramatically from year to year, the volume and impact certainly is. Recognition of this fact is reflected in the changing perspectives of IT security – new budget line items – and analysts who are cranking out more and more research of their own in spaces like mobile threat defense.
This report also helps to validate our own observations and guide our efforts to better support our customers. For instance, malware incidences may occur at dramatically lower rates than other types of incidents, yet account for over half of the breaches – even very small rates of malware in your organization should be taken very seriously. For a historical reference, check out our summary of the 2015 DBIR.
The value that can be derived from massive amounts of data is something we at Skycure definitely understand and take advantage of. It is precisely because of the deep data that we are able to amass from around the world, about mobile devices and incidents, that we are able to protect our customers against zero-day exploits and and advanced attacks that are getting much better at hiding themselves from traditional detection mechanisms. We applaud Verizon for this massive effort and their interest in reaching out to companies such as Skycure to contribute to this great report.