Summary: A significant 47% of organizations have faced a data breach or cyberattack in the last year involving third-party access, with 64% predicting these breaches will continue or increase. The challenges of managing third-party risks are compounded by inconsistent security strategies and limited resources, highlighted by an average breach recovery cost of ,000. Organizations are increasingly aware of the risks but still grapple with visibility and access management issues.
Affected: Organizations with third-party access
Keypoints :
- 47% of organizations experienced a breach involving third-party access in the past year.
- 64% of respondents expect third-party breaches to either increase or remain high over the next 12-24 months.
- 48% agree that third-party remote access has become a common attack surface.
- The average cost to recover from a breach is estimated at ,000 per incident.
- 53% of organizations reported loss of sensitive information as a major consequence of such breaches.
- 35% of respondents were unsure how their cyberattacks were carried out, indicating a lack of visibility.
- 41% cited insufficient resources or budget as a top barrier to managing third-party risks.
- 58% believe their strategy for addressing privileged access risks is inconsistent or lacking.
Source: https://www.helpnetsecurity.com/2025/02/14/third-party-data-breach-risks/