Security News > 2021 > May > Verizon DBIR 2021: Ransomware, Web App and Phishing Attacks Dominate

The annual bible of security breaches landed on Thursday with confirmation of more bad news: ransomware attacks continue to explode as organizations struggle with securing web apps, cloud deployments and employees victimized by social engineering.

The data, contained in the new Verizon 2021 Data Breach Investigations Report, shows that data-encrypting ransomware attacks appear in about 10 percent of breaches, more than double the frequency from last year.

After crunching the data, the DBIR found that the ransomware spike was influenced by new tactics, where some ransomware actors are stealing the data and naming-and-shaming victims during extortion negotiations.

The report also calls out a spike in attacks against web applications, noting that web-app hacks are the main attack vector in the "Hacking actions" category, accounting for more than 80 percent of all documented data breaches.

The 2021 DBIR is based on the analysis of nearly 30,000 incidents and more than 5,200 confirmed data breaches.

More than 5,000 of the incidents and nearly 1,500 of the confirmed data breaches covered by the latest DBIR impacted organizations in the APAC region, where the most common type of attack involved financially-motivated hackers phishing employee credentials and using them to access email accounts and web application servers.

News URL

http://feedproxy.google.com/~r/Securityweek/~3/70ziJh4OB-Y/verizon-dbir-2021-ransomware-web-app-and-phishing-attacks-dominate