"DBIR: Vulnerability Exploits Triple as Initial Access Point for Data Breaches"
Verizon's 2024 Data Breach Investigations Report (DBIR) found that the exploitation of vulnerabilities for initial access increased by 180 percent between 2022 and 2023. This method was used by 14 percent of malicious actors to breach networks. It follows credential theft and phishing as the third most used. The report attributed this growth to ransomware actors' use of the MOVEit vulnerability and other zero-day exploits in 2024. Verizon warned that even using the US Cybersecurity Infrastructure and Security Agency (CISA) Known Exploited Vulnerabilities (KEV) catalog, it takes about 55 days to remediate 50 percent of critical vulnerabilities after patches are available. This article continues to discuss key findings from Verizon's DBIR.
Submitted by grigby1