NetworkWorld - Privacy and Security Fanatic: Data breach report: 9 attack patterns describe 92% of 100,000 security incidents

/Home/Internet Security: Blogs/Internet Security: NetworkWorld blog

Verizon released its 2014 Data Breach Investigations Report.

By Ms. Smith
04/22/14

There are some big changes to Verizon's 2014 Data Breach Investigations Report (DBIR) (pdf), including a deep dive into two different datasets that came from 50 different sources and 95 countries. One set of data looks back at 1,367 confirmed data breaches and 63,437 security incidents from 2013. Another looks back over a decade of data covering about 3,800 data breaches and 100,000 security incidents. Guess what? Nine types of attack patterns accounted for 92% of 100,000 incidents spanning the last 10 years. Put another way by Verizon RISK team researchers, "Nine out of 10 of all breaches can be described by nine basic patterns."

Verizon identified these nine incident classification patterns: Web app attacks, cyber-espionage, point-of-sale intrusions, insider threats and privilege misuse, payment card skimmers, denial of service attacks, physical theft or lost devices, crimeware, miscellaneous user errors, and "everything else." While the researchers wrote plenty of commentary, there are some astounding graphics in the report.

Click the URL above to read the full article