Cyberattacks surged in 2025, with third party attacks seeing a huge rise

Cyberattacks surged in 2025, with third party attacks seeing a huge rise

Verizon data breach report finds third-party attacks doubled in 2024, and were present in 30% of all attacks.

The 2025 DBIR: What Actually Matters

The 2025 Verizon Data Breach Investigations Report (DBIR) pulls from over 22,000 incidents and 12,195 confirmed breaches. It’s the largest dataset they’ve analyzed to dateand what it shows is damning. Third-party failures, credential leaks, and edge device vulnerabilities weren’t just commonthey defined the year.Third-Party Failures Aren’t a Side Problem. They Are the Problem.One out of every three breaches involved a third party, up from 15% la…

Cybercriminals switch up their top initial access vectors of choice

Third-party involvement in breaches and exploitation of vulnerabilities have become more important factors in security breaches, according to the latest edition of Verizon’s Data Breach Investigation Report (DBIR). An analysis of 22,000 security incidents, including 12,195 confirmed data breaches in 139 countries, found that credential abuse (22%) and exploitation of vulnerabilities (20%, up from 14.9% in 2024) were the two most prevalent initia…

Verizon 2025 DBIR: Third-party software risk takes the spotlight

It’s that time of year again: Verizon Business has released the 2025 edition of the Data Breach Investigations Report (DBIR), its 18th-annual report on cybercrime. The DBIR is famous for how well it captures the current state of things, analyzing tens of thousands of security incidents to understand the current threat landscape.