Verizon’s 2025 Data Breach Investigations Report: System Intrusion Breaches Double in EMEA
Verizon Business has released its 2025 Data Breach Investigations Report (DBIR), revealing significant increases in global cybersecurity threats. The report analyzed over 22,000 security incidents, including 12,195 confirmed data breaches.
Key findings show system intrusion breaches in EMEA nearly doubled to 53%, while third-party involvement in breaches doubled to 30%. Vulnerability exploitation increased 34% globally. In EMEA, 29% of breaches originated internally, compared to just 1% in APAC and 5% in North America.
The report highlights concerning trends including:
- 37% increase in ransomware attacks, now present in 44% of breaches
- Manufacturing sector saw espionage-motivated breaches surge sixfold to 20%
- Retail experienced a 15% increase in cyber incidents since 2024
- 64% of organizations did not pay ransoms, up from 50% two years ago
Verizon Business ha pubblicato il suo Rapporto sulle Indagini sulle Violazioni dei Dati 2025 (DBIR), evidenziando un aumento significativo delle minacce informatiche a livello globale. Il rapporto ha analizzato oltre 22.000 incidenti di sicurezza, inclusi 12.195 casi confermati di violazioni dei dati.
I risultati chiave mostrano che le intrusioni nei sistemi nella regione EMEA sono quasi raddoppiate, raggiungendo il 53%, mentre il coinvolgimento di terze parti nelle violazioni è raddoppiato al 30%. Lo sfruttamento delle vulnerabilità è aumentato del 34% a livello globale. In EMEA, il 29% delle violazioni ha avuto origine interna, rispetto a solo l'1% in APAC e il 5% in Nord America.
Il rapporto evidenzia tendenze preoccupanti, tra cui:
- un aumento del 37% negli attacchi ransomware, ora presenti nel 44% delle violazioni
- un aumento sei volte superiore delle violazioni motivate da spionaggio nel settore manifatturiero, arrivando al 20%
- un incremento del 15% degli incidenti informatici nel settore retail rispetto al 2024
- il 64% delle organizzazioni non ha pagato riscatti, rispetto al 50% di due anni fa
Verizon Business ha publicado su Informe de Investigaciones de Brechas de Datos 2025 (DBIR), revelando un aumento significativo de las amenazas cibernéticas a nivel mundial. El informe analizó más de 22,000 incidentes de seguridad, incluyendo 12,195 brechas de datos confirmadas.
Los hallazgos clave muestran que las intrusiones en sistemas en EMEA casi se duplicaron alcanzando el 53%, mientras que la participación de terceros en las brechas se duplicó al 30%. La explotación de vulnerabilidades aumentó un 34% a nivel global. En EMEA, el 29% de las brechas se originaron internamente, comparado con solo el 1% en APAC y el 5% en Norteamérica.
El informe destaca tendencias preocupantes, entre las que se incluyen:
- un aumento del 37% en ataques de ransomware, presentes ahora en el 44% de las brechas
- el sector manufacturero experimentó un aumento seis veces mayor en brechas motivadas por espionaje, alcanzando el 20%
- el sector minorista tuvo un incremento del 15% en incidentes cibernéticos desde 2024
- el 64% de las organizaciones no pagaron rescates, frente al 50% de hace dos años
Verizon Business는 2025 데이터 유출 조사 보고서(DBIR)를 발표하며 전 세계 사이버 보안 위협이 크게 증가했음을 밝혔습니다. 이 보고서는 22,000건 이상의 보안 사고를 분석했으며, 그중 12,195건은 확인된 데이터 유출 사례입니다.
주요 결과에 따르면 EMEA 지역의 시스템 침입 유출이 거의 두 배로 증가하여 53%에 달했으며, 제3자 관련 유출도 두 배로 늘어나 30%를 기록했습니다. 전 세계적으로 취약점 악용은 34% 증가했습니다. EMEA에서는 유출의 29%가 내부에서 발생했으며, APAC은 1%, 북미는 5%에 불과했습니다.
보고서는 다음과 같은 우려스러운 추세를 강조합니다:
- 랜섬웨어 공격이 37% 증가하여 전체 유출의 44%에 포함됨
- 제조업 분야에서 스파이 활동 동기 유출이 6배 증가하여 20%에 도달
- 소매업에서 2024년 이후 사이버 사건이 15% 증가
- 64%의 조직이 몸값을 지불하지 않았으며, 이는 2년 전 50%에서 증가한 수치
Verizon Business a publié son Rapport d'Investigation sur les Violations de Données 2025 (DBIR), révélant une augmentation significative des menaces de cybersécurité à l'échelle mondiale. Le rapport a analysé plus de 22 000 incidents de sécurité, dont 12 195 violations de données confirmées.
Les principales conclusions montrent que les intrusions dans les systèmes en EMEA ont presque doublé pour atteindre 53 %, tandis que l'implication de tiers dans les violations a doublé pour atteindre 30 %. L'exploitation des vulnérabilités a augmenté de 34 % à l'échelle mondiale. En EMEA, 29 % des violations étaient d'origine interne, contre seulement 1 % en APAC et 5 % en Amérique du Nord.
Le rapport met en lumière des tendances préoccupantes, notamment :
- une augmentation de 37 % des attaques par ransomware, désormais présentes dans 44 % des violations
- le secteur manufacturier a vu les violations motivées par l'espionnage multipliées par six, atteignant 20 %
- le secteur de la vente au détail a connu une hausse de 15 % des incidents cybernétiques depuis 2024
- 64 % des organisations n'ont pas payé de rançons, contre 50 % il y a deux ans
Verizon Business hat seinen 2025 Data Breach Investigations Report (DBIR) veröffentlicht, der einen deutlichen Anstieg der globalen Cybersecurity-Bedrohungen aufzeigt. Der Bericht analysierte über 22.000 Sicherheitsvorfälle, darunter 12.195 bestätigte Datenverletzungen.
Zentrale Erkenntnisse zeigen, dass Systemeinbrüche in der EMEA-Region nahezu verdoppelt auf 53 % angestiegen sind, während die Beteiligung Dritter an Verletzungen auf 30 % verdoppelt wurde. Die Ausnutzung von Schwachstellen nahm weltweit um 34 % zu. In EMEA gingen 29 % der Verletzungen auf interne Quellen zurück, verglichen mit nur 1 % in APAC und 5 % in Nordamerika.
Der Bericht hebt besorgniserregende Trends hervor, darunter:
- 37 % Anstieg bei Ransomware-Angriffen, die nun 44 % der Verletzungen ausmachen
- Im Fertigungssektor stiegen spionagebedingte Verletzungen um das Sechsfache auf 20 %
- Im Einzelhandel gab es seit 2024 einen Anstieg der Cybervorfälle um 15 %
- 64 % der Organisationen zahlten keine Lösegeldforderungen, gegenüber 50 % vor zwei Jahren
- Higher percentage of organizations (64% vs 50%) refusing to pay ransoms shows improved resilience
- Decline in internal threats by 41% in EMEA region
- System intrusion breaches doubled to 53% in EMEA
- Ransomware attacks increased by 37% globally
- Third-party breach involvement doubled to 30%
- Vulnerability exploitation increased by 34% globally
- Manufacturing sector experienced 600% increase in espionage-motivated breaches
- Retail cyber incidents increased by 15% since 2024
LONDON, April 23, 2025 (GLOBE NEWSWIRE) -- Verizon Business today released its 2025 Data Breach Investigations Report (DBIR), revealing a dramatic surge in global data breaches, with EMEA experiencing a significant increase in system intrusion breaches. These breaches have skyrocketed, nearly doubling to
The 2025 DBIR, which analysed over 22,000 security incidents, including 12,195 confirmed data breaches, found third-party involvement doubling to
“The alarming rate of employee-driven breaches in EMEA underscores a critical need for businesses to strengthen their internal cybersecurity. Organisations must go beyond guarding against external threats and foster a culture of security awareness and accountability within,” said Sanjiv Gossain, Group Vice President and Head of EMEA of Verizon Business. “The surge in system intrusions across EMEA is a clear warning to organisations to urgently fortify both external defenses and internal controls through comprehensive employee training, robust access controls, and zero-trust frameworks.”
Key EMEA Findings:
- System Intrusion Threats: System intrusion breaches surged to
53% , nearly double last year’s rate of27% - Insider Leaks:
29% of breaches originate from within EMEA organisations, with19% attributed to unintentional mistakes and8% involving misuse, such as unauthorised use of data that violates the organisation’s policies - Social Engineering: The second-most common incident pattern in the region, with phishing appearing in
19% of breaches in EMEA
Key Global Findings:
- Exploitation of Vulnerabilities: This initial attack vector saw a
34% increase, with a significant focus on zero-day exploits targeting perimeter devices and VPNs - Ransomware: Ransomware attacks rose by
37% since last year, and are now present in44% of breaches, despite a noticeable decrease in the median ransom amount paid - Third-Party Involvement: The percentage of breaches involving third parties doubled, highlighting the risks associated with supply chain and partner ecosystems
- Human Element: Human involvement in breaches remains high, with a significant overlap between social engineering and credential abuse
“The DBIR's findings underscore the importance of a multi-layered defense strategy,” said Chris Novak, Vice President, Global Cybersecurity Solutions, Verizon Business. “Businesses need to invest in robust security measures, including strong password policies, timely patching of vulnerabilities, and comprehensive security awareness training for employees.”
Sector Spotlight: Manufacturing Hit by Sixfold Surge in Espionage Attacks
The 2025 DBIR exposes alarming cybersecurity shifts targeting key industries worldwide. Manufacturing has experienced a dramatic, nearly sixfold surge in espionage-motivated breaches, jumping to
Retail organisations have weathered a
This year's findings serve as a critical warning for businesses globally—including those in EMEA—to take immediate, decisive action. Organisations must strengthen their cybersecurity defenses against these evolving threats to protect vital assets, maintain customer trust, and ensure sustainable success in today's digital landscape.
“This year’s DBIR findings reflect a mixed bag of results. Glass-half-full types can celebrate the rise in the number of victim organisations that did not pay ransoms with
Visit our Cybersecurity Awareness page to learn more about data privacy and Verizon’s efforts.
About Verizon Business
Verizon Business is a global leader in providing communication and technology solutions to businesses of all sizes. With a comprehensive portfolio of services, including network, cloud, security, and collaboration solutions, Verizon Business helps organizations improve their operations, enhance their customer experiences, and drive innovation.
Verizon Communications Inc. (NYSE, Nasdaq: VZ) powers and empowers how its millions of customers live, work and play, delivering on their demand for mobility, reliable network connectivity and security. Headquartered in New York City, serving countries worldwide and nearly all of the Fortune 500, Verizon generated revenues of
VERIZON’S ONLINE MEDIA CENTER: News releases, stories, media contacts and other resources are available at verizon.com/news. News releases are also available through an RSS feed. To subscribe, visit www.verizon.com/about/rss-feeds/.
Media contact:
Sebrina Kepple
sebrina.kepple@verizon.com
FAQ
What are the key findings of Verizon's 2025 DBIR report for EMEA region?
How much did ransomware attacks increase in Verizon's 2025 security report?
What percentage of organizations refused to pay ransoms according to VZ's 2025 report?
How did manufacturing sector cyber espionage change in Verizon's 2025 report?
What is the status of third-party involvement in data breaches according to VZ's 2025 DBIR?
