Verizon’s 2025 Data Breach Investigations Report: Alarming surge in cyberattacks through third-parties
Verizon Business has released its 2025 Data Breach Investigations Report (DBIR), revealing alarming trends in cybersecurity threats. The analysis of 22,000 security incidents, including 12,195 confirmed breaches, shows that third-party involvement in breaches has doubled to 30%, while vulnerability exploitation increased by 34%.
Key findings include:
- Credential abuse (22%) and vulnerability exploitation (20%) are leading attack vectors
- Ransomware attacks increased 37%, present in 44% of breaches
- Median ransom payment was US$115,000
- 88% of SMB breaches involved ransomware
The report highlights increased espionage-motivated attacks in Manufacturing and Healthcare sectors, with persistent threats to Education, Financial, and Retail industries. Positively, 64% of organizations did not pay ransoms, up from 50% two years ago.
Verizon Business ha pubblicato il suo Rapporto sulle Indagini sulle Violazioni dei Dati 2025 (DBIR), rivelando tendenze preoccupanti nelle minacce informatiche. L'analisi di 22.000 incidenti di sicurezza, inclusi 12.195 casi confermati di violazioni, mostra che il coinvolgimento di terze parti nelle violazioni è raddoppiato al 30%, mentre lo sfruttamento delle vulnerabilità è aumentato del 34%.
I principali risultati includono:
- L'abuso di credenziali (22%) e lo sfruttamento delle vulnerabilità (20%) sono i vettori di attacco principali
- Gli attacchi ransomware sono aumentati del 37%, presenti nel 44% delle violazioni
- Il riscatto medio pagato è stato di 115.000 dollari USA
- Il 88% delle violazioni nelle PMI ha coinvolto ransomware
Il rapporto evidenzia un aumento degli attacchi motivati da spionaggio nei settori della manifattura e della sanità, con minacce persistenti nei settori dell'istruzione, finanziario e retail. In modo positivo, il 64% delle organizzazioni non ha pagato riscatti, rispetto al 50% di due anni fa.
Verizon Business ha publicado su Informe de Investigaciones de Violaciones de Datos 2025 (DBIR), revelando tendencias alarmantes en amenazas cibernéticas. El análisis de 22,000 incidentes de seguridad, incluyendo 12,195 violaciones confirmadas, muestra que la participación de terceros en las violaciones se ha duplicado al 30%, mientras que la explotación de vulnerabilidades aumentó un 34%.
Los hallazgos clave incluyen:
- El abuso de credenciales (22%) y la explotación de vulnerabilidades (20%) son los principales vectores de ataque
- Los ataques de ransomware aumentaron un 37%, presentes en el 44% de las violaciones
- El pago medio del rescate fue de 115,000 dólares estadounidenses
- El 88% de las violaciones en PYMEs involucraron ransomware
El informe destaca un aumento de ataques motivados por espionaje en los sectores de Manufactura y Salud, con amenazas persistentes en Educación, Finanzas y Retail. De forma positiva, el 64% de las organizaciones no pagaron rescates, frente al 50% hace dos años.
Verizon Business가 2025년 데이터 유출 조사 보고서(DBIR)를 발표하며 사이버 보안 위협의 심각한 추세를 공개했습니다. 22,000건의 보안 사고 중 12,195건의 확인된 유출 사례를 분석한 결과, 제3자 연루 비율이 30%로 두 배 증가했고, 취약점 악용은 34% 증가했습니다.
주요 내용은 다음과 같습니다:
- 자격 증명 남용(22%)과 취약점 악용(20%)이 주요 공격 경로
- 랜섬웨어 공격은 37% 증가하여 전체 유출의 44%에 포함
- 중간 몸값 금액은 미화 115,000달러
- 중소기업 유출의 88%가 랜섬웨어 관련
보고서는 제조업과 의료 분야에서 스파이 행위 동기 공격이 증가했으며, 교육, 금융, 소매 업계에 지속적인 위협이 있음을 강조합니다. 긍정적으로, 조직의 64%가 몸값을 지불하지 않아 2년 전 50%에서 증가했습니다.
Verizon Business a publié son Rapport d’enquête sur les violations de données 2025 (DBIR), révélant des tendances inquiétantes en matière de cybersécurité. L’analyse de 22 000 incidents de sécurité, dont 12 195 violations confirmées, montre que l’implication de tiers dans les violations a doublé pour atteindre 30 %, tandis que l’exploitation des vulnérabilités a augmenté de 34 %.
Les principales conclusions sont :
- L’abus d’identifiants (22 %) et l’exploitation des vulnérabilités (20 %) sont les vecteurs d’attaque principaux
- Les attaques par ransomware ont augmenté de 37 %, présentes dans 44 % des violations
- La rançon médiane s’élevait à 115 000 dollars US
- 88 % des violations chez les PME impliquaient des ransomwares
Le rapport souligne une augmentation des attaques motivées par l’espionnage dans les secteurs de la fabrication et de la santé, avec des menaces persistantes dans l’éducation, la finance et le commerce de détail. De manière positive, 64 % des organisations n’ont pas payé de rançon, contre 50 % il y a deux ans.
Verizon Business hat seinen Data Breach Investigations Report (DBIR) 2025 veröffentlicht, der alarmierende Trends bei Cyber-Bedrohungen aufzeigt. Die Analyse von 22.000 Sicherheitsvorfällen, darunter 12.195 bestätigte Datenverletzungen, zeigt, dass die Beteiligung Dritter an Verstößen auf 30 % verdoppelt wurde, während die Ausnutzung von Schwachstellen um 34 % gestiegen ist.
Wesentliche Erkenntnisse sind:
- Missbrauch von Zugangsdaten (22 %) und Ausnutzung von Schwachstellen (20 %) sind die Hauptangriffsvektoren
- Ransomware-Angriffe stiegen um 37 % und sind bei 44 % der Verstöße präsent
- Die mittlere Lösegeldzahlung betrug 115.000 US-Dollar
- 88 % der Verstöße bei KMU beinhalteten Ransomware
Der Bericht hebt einen Anstieg spionagemotivierter Angriffe in den Bereichen Fertigung und Gesundheitswesen hervor, während Bildung, Finanz- und Einzelhandelsbranchen weiterhin bedroht sind. Positiv ist, dass 64 % der Organisationen kein Lösegeld zahlten, gegenüber 50 % vor zwei Jahren.
- More organizations refusing to pay ransoms (64% vs 50% two years ago)
- Comprehensive analysis of 22,000 security incidents provides valuable threat intelligence
- 37% increase in ransomware attacks, present in 44% of breaches
- Third-party breach involvement doubled to 30%
- 34% surge in vulnerability exploitation attacks
- SMBs disproportionately affected with ransomware in 88% of breaches
- High median ransom payment of $115,000 impacting business finances
Insights
Verizon's DBIR reveals alarming cybersecurity trends that position the company as a thought leader in the security services market.
Verizon's 2025 Data Breach Investigations Report (DBIR) highlights significant escalation in the cybersecurity threat landscape. The doubling of third-party involvement in breaches to
The report's analysis of 22,000+ security incidents and 12,195 confirmed breaches provides comprehensive insight into attack patterns. Credential abuse (
Particularly concerning is the
The rise in espionage-motivated attacks across Manufacturing and Healthcare sectors indicates a shift toward targeting intellectual property and sensitive data beyond immediate financial gain. This evolution in attacker motivation requires more sophisticated defense strategies beyond traditional security approaches.
Verizon's cybersecurity report demonstrates thought leadership but lacks direct business impact, serving primarily as marketing for their security services.
Verizon Business's annual DBIR represents continuous investment in market education rather than a direct revenue-generating initiative. The report serves dual purposes: positioning Verizon as a cybersecurity thought leader while creating market awareness that potentially drives business to their security solutions division.
The report strategically emphasizes growing threat areas where Verizon can offer solutions, particularly the doubled third-party risk and increased vulnerability exploitation. By highlighting these trends, Verizon creates business development opportunities across their security portfolio.
The identified industry-specific trends in Manufacturing, Healthcare, Education, Financial and Retail sectors allow Verizon to target vulnerable industries with specialized security offerings. The spotlight on SMB vulnerability, with ransomware present in
While the DBIR showcases Verizon's expertise, it's important to note this is a regular annual publication rather than a new business initiative. The report primarily serves as marketing collateral and thought leadership content rather than directly driving significant revenue growth. Its impact on Verizon's overall financial performance is minimal compared to their core telecommunications business, but it strengthens their position in the growing cybersecurity services segment.
BASKING RIDGE, N.J., April 23, 2025 (GLOBE NEWSWIRE) -- Verizon Business today released its 2025 Data Breach Investigations Report (DBIR), which reveals a significant increase in cyberattacks. The report found that third-party involvement in breaches has doubled to
The report, which analyzed over 22,000 security incidents, including 12,195 confirmed data breaches, found that credential abuse (
"The DBIR's findings underscore the importance of a multi-layered defense strategy," said Chris Novak, Vice President, Global Cybersecurity Solutions, Verizon Business. "Businesses need to invest in robust security measures, including strong password policies, timely patching of vulnerabilities, and comprehensive security awareness training for employees."
Key findings from the report emphasize the urgency for businesses to address cybersecurity threats:
- Exploitation of Vulnerabilities: This initial attack vector saw a
34% increase, with a significant focus on zero-day exploits targeting perimeter devices and VPNs - Ransomware: Ransomware attacks rose by
37% since last year, and are now present in44% of breaches, despite a noticeable decrease in the median ransom amount paid - Third-Party Involvement: The percentage of breaches involving third parties doubled, highlighting the risks associated with supply chain and partner ecosystems
- Human Element: Human involvement in breaches remains high, with a significant overlap between social engineering and credential abuse
The 2025 DBIR also shed light on industry-specific trends, revealing an alarming rise in espionage-motivated attacks in the Manufacturing and Healthcare sectors, and persistent threats to the Education, Financial, and Retail industries. The report also highlighted the disproportionate impact of ransomware on small and medium-sized businesses (SMBs).
Verizon Business's 2025 DBIR serves as a wake-up call for businesses to take immediate action to strengthen their cybersecurity posture and mitigate the risks posed by evolving cyber threats. With the median ransom payment to cybercriminals last year being US
“This year’s DBIR findings reflect a mixed bag of results. Glass-half-full types can celebrate the rise in the number of victim organizations that did not pay ransoms with
To learn more about cybersecurity and actionable guidance to create a safer digital world visit our Cybersecurity Awareness page.
About Verizon Business
Verizon Business is a global leader in providing communication and technology solutions to businesses of all sizes. With a comprehensive portfolio of services, including network, cloud, security, and collaboration solutions, Verizon Business helps organizations improve their operations, enhance their customer experiences, and drive innovation.
Verizon Communications Inc. (NYSE, Nasdaq: VZ) powers and empowers how its millions of customers live, work and play, delivering on their demand for mobility, reliable network connectivity and security. Headquartered in New York City, serving countries worldwide and nearly all of the Fortune 500, Verizon generated revenues of
VERIZON’S ONLINE MEDIA CENTER: News releases, stories, media contacts and other resources are available at verizon.com/news. News releases are also available through an RSS feed. To subscribe, visit www.verizon.com/about/rss-feeds/.
Media contact:
Carlos Arcila
carlos.arcila@verizon.com
FAQ
What are the key findings of Verizon's 2025 DBIR report regarding ransomware attacks?
How has third-party involvement in data breaches changed according to VZ's 2025 report?
What are the main initial attack vectors identified in Verizon's 2025 security report?
Which industries are most targeted by espionage-motivated attacks according to VZ's 2025 DBIR?
What percentage of organizations refused to pay ransoms according to Verizon's 2025 report?
