Summary: The 2025 Verizon Data Breach Investigations Report (DBIR) outlines the evolution of cybercrime into a sophisticated ecosystem, analyzing over 12,000 breaches. It highlights the interconnectedness of threat actors, increasing exploitation of vulnerabilities, and growing concerns around third-party risks and generative AI use. The report serves as a wake-up call for cybersecurity leaders to adapt their strategies to a more complex threat landscape.
Affected: Verizon and organizations utilizing digital services and third-party vendors
Keypoints :
- Infostealers and ransomware are now part of a coordinated threat supply chain, where 54% of ransomware victims had credentials found in infostealer dumps.
- There has been a 34% rise in breaches caused by vulnerability exploits, particularly affecting edge devices and VPNs.
- 30% of breaches involve third-party components, emphasizing the need for a clear understanding of the Shared Responsibility Model.
- Secrets leakage remains a significant issue, particularly with exposed credentials in public code repositories, with GitLab tokens representing a large portion of leaks.
- The use of unsanctioned generative AI tools is increasing risks, with a notable percentage of employees employing these tools without proper oversight.