Verizon published today its yearly Data Breach Investigation Report, based on real-world data from41,686 security incidents and 2,013 data breaches provided by 73 data sources, both public andprivate entities, spanning 86 countries worldwide.
The report provides a most useful snapshot of the current state of the fight against cybercrime, and highlights not only the weaknesses in organisations’ approach to security, but also the areas where cybercriminals seem to be focussing their efforts.
IT Security professionals helped us break down the key stats from the report, providing their interpretation of the findings and advice for enterprises looking to strengthen their security posture.
Martin Jartelius, CSO at Outpost24:
It is interesting to note that 45 % breaches occur due to hacking, and 22 % went via targeting a user or employee. The attackers then on an average need less than 4 further steps in 90 % of the attacks, but most do indeed require more than a single step.
This shows clearly that defence in depth is just as important as ever.
The study shows that vulnerability management of internet facing systems is successful in most organizations, but that for those who do not address this, it is an attractive venue of attack.
Half of organizations have less than 1% of their internet facing systems with an exposed vulnerability, 90% of organizations have less than 10% of their hosts exposing a known vulnerability.
43 % of all the recorded breaches involved web applications. But when we look at hacking, the numbers get really interesting, where we see that 90 % of hacking targets web applications.
Most breaches are started vi ..
Support the originator by clicking the read the rest link below.
