Verizon’s 2015 edition of its annual Data Breach Investigations Report (DBIR), which the company released on April 14, provides insight into the state of the cyber-security breach landscape over the course of 2014. Overall, the Verizon report analyzed 79,790 security events, of which 2,122 were confirmed data breaches. In contrast, the 2014 DBIR report was based on data from 63,437 security incidents, of which 1,367 were confirmed data breaches. While the volume of data breaches has risen, the techniques used by attackers have remained somewhat more static. The Verizon analysis found that 99.9 percent of the exploited vulnerabilities in 2014 had been compromised more than a year after the associated CVE (Common Vulnerabilities and Exposures) was published. The Verizon report also found that, while mobile is an area of concern, mobile exploitation was not a widespread issue in 2014. Finally, Verizon looked at the cost of a data breach. When organizations are exploited, the cost of the data breach varies by a wide range, based in part on the number of records stolen. A million-record loss can range from a low of $57,600 all the way up to $27.5 million. In this slide show, eWEEK examines some key findings from the 2015 Verizon DBIR.

Leave a Reply