as is tradition, I just published my commentary on this year's Verizon Data Breach Investigations Report (aka #DBIR): https://kellyshortridge.com/blog/posts/shortridge-makes-sense-of-verizon-dbir-2025/

In the post, I include the following sections covering what I felt were the most notable insights and facets in the report:

🌍 So, what?

💃 Espionage: fast fashion or couture?

👻 APTs go BWAA-haha >:3

💸 How do the money crimes generate money?

🤖 Attackers are still not really using GenAI

👩‍🍳 If you can’t make your own 0day, store-bought creds are fine

🔓 #Security was the real supply chain threat all along

🍄 Things Rot Apart

🕵‍ Scooby Doo's Spooky Kooky Corporate IT Caper

🌈 At least some things are improving somewhere

Go forth and enjoy my commentary, and then make sure to find me at #RSAC to tell me what you loved or hated Tuesday 14:30 at the @fastlydevs booth (where you'll also get a free copy of my book ✨)

thanks @alexcpsec for the early copy <3

If you think your government is above doing some black hat shit for money, odds are you're wrong.

If you think that 72% of state sponsored incidents without a known financial motive means 72% of *states* not going for the money, I'll remind you that the CIA got caught selling crack cocaine in American cities in order to fund "black ops."

#dbir

In this year’s DBIR, vulnerabilities in Virtual Private Networks (VPNs) and edge devices were particular areas of concern, accounting for 22% of the CVE-related breaches in this year’s report, almost eight times the amount of 3% found in the 2024 report.

https://www.tenable.com/209928

#dbir #vulnerabilities #vpn #patching #infosec

The 2025 #DBIR is out! Go get it.

Verizon.com/dbir

DomainTools is proud to be a Contributing Organization for this year’s Verizon Business Data Breach Investigations Report.

A special thank you to the DBIR team, C. David Hylender, Philippe Langlois, Alex Pinto, and Suzanne Widup!

Here’s a tl;dr of our takeaways from an Internet intelligence perspective:

🔹30% of all analyzed breaches featured third-party involvement, double the amount from past year
🔹Human involvement (i.e., clicking on a phishing email or visiting a malicious website) appeared in 60% of breaches
🔹20% of breaches involved the exploitation of vulnerabilities, up 34% from the 2024 report
🔹Ransomware was present in 44% of all breaches
🔹The use of synthetically-generated text in malicious emails has doubled over the past two years

Curious to find out how all of these threats involve DNS? Check out our blog summary here: https://www.domaintools.com/resources/blog/reflections-2025-verizon-dbir/?utm_source=Mastodon&utm_medium=Social&utm_campaign=DBIR-2025

#DBIR

🚨 Supply Chain Breaches Surge 68% 🚨
Verizon's DBIR reports a significant rise in third-party breaches driven by software vulnerabilities, ransomware, and extortion attacks. The definition of "supply chain breach" has expanded to include compromised third-party software. Are your vendors prepared to tackle this growing risk?

Learn more: https://zurl.co/GZdv

#Cybersecurity #SupplyChain #DataBreach #DBIR #ThirdPartyRisk #Ransomware #SOClogix

Verizon Data Breach Investigation's Report 2024

While vulnerability exploitation surged almost 180%, the use of stolen credentials was still a most common initial action in breaches 2023.

https://www.verizon.com/about/news/2024-data-breach-investigations-report-vulnerability-exploitation-boom

#infosec #cybersecurity #DBIR