sb-eu logo
Story image

Cybercriminals after money more than anything else - Verizon report

27 May 2020

Of all the things cybercriminals aim to accomplish in their illicit activities, money still takes centre stage.

Out of more than 32,000 incidents analysed in the Verizon Business 2020 Data Breach Investigations Report, 3950 were confirmed breaches across 81 countries. Furthermore, a whopping 86% of breaches were found to be financially motivated. 

On a regional level, 91% of breaches in North America were financially motivated, followed by 70% in Europe, Middle East & Africa; and 63% in Asia pacific.

The report’s lead author Alex Pinto says that headlines often talk about spying or grudge attacks, but the reality from data is that financial gain is driving crime, regardless of whether criminals are using humans or systems to conduct their exploits.

But there is some good news – most organisations are taking actions such as ongoing patch management. The report says that fewer than one in 20 breaches exploit these kinds of vulnerabilities.

Pinto says that more organisations are tracking common patterns within cyber attack journeys, which could be a ‘security game changer’ for cyber defense. Organisations can determine the threat actor’s destination while an attack is in progress and predict the eventual breach target, stopping attacks dead in their tracks. The report calls this a ‘defender’s advantage’.

Other common cyber attacks include web application attacks, as threat actors go after cloud-based data. According to the report, more than 20% of attacks were against web application and used stolen credentials in some way. The report notes that the trend is worrying as more organisations shift business-critical workloads to the cloud.

Credential theft, phishing, business email compromise and other social engineering attacks caused more than 67% of breaches. Specifically, 37% of credential theft breaches used stolen or weak credentials, 25% involved phishing, and 22% involved human error.

Amongst malware incidents, ransomware was involved in 27% of cases, and 18% of organisations blocked at least one piece of ransomware in the last year.

"As remote working surges in the face of the global pandemic, end-to-end security from the cloud to employee laptop becomes paramount," says Verizon Business CEO Tami Erwin. 

"In addition to protecting their systems from attack, we urge all businesses to continue employee education as phishing schemes become increasingly sophisticated and malicious."
Other regional findings:

Europe, Middle East and Africa (EMEA): Denial of Service (DoS) attacks accounted for over 80% of malware incidents; 40% of breaches targeted web applications, using a combination of hacking techniques that leverage either stolen credentials or known vulnerabilities. 14% of breaches were associated with cyber-espionage.

Asia Pacific (APAC): 63% of breaches were financially motivated, and phishing attacks are also high, at over 28%.

 Northern America: Stolen credentials were the most commonly involved in cybercrime techniques, accounting for over 79% of hacking breaches; 33% of breaches were associated with either phishing or pretexting.

Story image
Rising threat of data breaches among enterprises drives growth in network security revenue
"Key factors leading to the growth of network security market revenue in the Asia Pacific region includes instances of ransomware attacks, targeted attacks and phishing."More
Story image
Securing the 'next normal' — Check Point's cybersecurity predictions for 2021
“One of the few predictable things about cyber-security is that threat actors will always seek to take advantage of major events or changes – such as COVID-19, or the introduction of 5G – for their own gain."More
Story image
Zerto launches security solutions for containerised applications
The company has launched its beta program of Zerto for Kubernetes (Z4K), an extension of its Zerto Platform, to support next-generation, cloud native applications.More
Story image
Voice phishing attacks on the rise, remote workers vulnerable
There is an increase in voice phishing attacks, where hackers use existing employee names in attempt to trick victims into sharing login credentials and data by phone.More
Story image
New CompTIA cybersecurity skills certification available worldwide
Private sector business and defense organisations alike rely on CompTIA Security+ to build cybersecurity skills among their frontline cyber defenders.More
Story image
DDoS attacks surge, becoming more sophisticated
After doubling from Q1 to Q2, the total number of network layer attacks observed in Q3 doubled again — resulting in a 4x increase in number compared to the pre-COVID levels in the first quarter. More