2019 Verizon Data Breach Investigations Report (DBIR)

JDMurrayJDMurray MSIT InfoSec CISSP SSCP GSOM GSEC EnCE C|EH Cloud+ CySA+ CASP+ Linux+ PenTest+ Security+Surf City, USAAdmin Posts: 12,772 Admin
Verizon has released its 2019 Data Breach Investigations Report. Social engineering attacks targeting C-level executives, attacks on cloud-based email servers, and payment card web app compromises all increased over the past year. Ransomware accounted for nearly 24 percent of malware infections. The report is based “on real-world data from 41,686 security incidents and 2,013 data breaches provided by 73 data sources, both public and private entities, spanning 86 countries worldwide.”

2019 Data Breach Investigations Report - Executive Summary (PDF)
2019 Data Breach Investigations Report - Full Report (PDF)
Verizon DBIR Home Page
Tagged:

Comments

  • iBrokeITiBrokeIT GDSA, GRID, GICSP, GCIP, GXPN, GPEN, GWAPT, GCFE, GCIA, GCIH, GSEC, Pen+, CySA+, Sec+, N+, A+, eJPT Member Posts: 1,316 ■■■■■■■■■□
    JDMurray said:
    The report is based “on real-world data from 41,686 security incidents and 2,013 data breaches provided by 73 data sources, both public and private entities, spanning 86 countries worldwide.”

    Can't help but wonder what faction that of all actual security incidents that actually makes up. :)
    2019: GPEN | GCFE | GXPN | GICSP | CySA+ 
    2020: GCIP | GCIA 
    2021: GRID | GDSA | Pentest+ 
    2022: GMON GCWN Linux+

    WGU BS IT-NA | SANS Grad Cert: PT&EH | SANS Grad Cert: ICS Security | SANS Grad Cert: Cyber Defense Ops
  • JDMurrayJDMurray MSIT InfoSec CISSP SSCP GSOM GSEC EnCE C|EH Cloud+ CySA+ CASP+ Linux+ PenTest+ Security+ Surf City, USAAdmin Posts: 12,772 Admin
    I would guess that annually most actual security incidents go undiscovered or unreported to the public. I'm also guessing that some of the data in the DBIR is from security incidents only known to the victim and Verizon Enterprise Services.
Sign In or Register to comment.