Report: Ransomware Data Breaches' Growth Last Year Equal to Last 5 Years Combined

  • By Kristal Kuykendall
  • 05/26/22

Data breaches resulting from ransomware attacks jumped by 13% last year — equal to the last five years’ increase combined — and are impacting more education organizations than ever, according to the recently released Verizon Business 2022 Data Breach Investigations Report.

The research is based on analysis of 914,547 incidents, 234,638 breaches, and 8.9 TBs of cybersecurity data since the first DBIR 15 years ago, Verizon said; the incident information is from Verizon Business data as well as 87 partners in the telecommunications and cybersecurity industries.

Researchers analyzed 23,896 cyber incidents last year, with 5,212 of those being data breaches, the report said.

In the education sector, DBIR researchers analyzed 1,241 cyber incidents, with 282 of those resulting in data breaches.

Key Findings Among Education Cybersecurity Incidents:

  • 139 of the data breaches included the use of malware.
  • 123 of the data breaches were initiated by system intrusions.
  • 55 of the data breaches were initiated by basic web application attacks
  • 51 breaches resulted from from miscellaneous errors by humans.
  • Malware was found to in 437 of all education cyberattacks.
  • 790 of all cyberattacks were classified as hacking attempts.
  • 643 of all cyberattacks were classified as denial of service attacks.
  • 95% of all cyberattacks targeted the education organization’s servers.
  • 75% of cyber incidents were initiated by external threat actors.
  • 95% of breaches were motivated by threat actors seeking data for financial gain.
  • 63% of the data compromised was classified as personal, identifiable information.
  • 41% of data compromised was credentials.

The DBIR report noted that about four in five breaches is attributable to organized crime, adding that human error — primarily, misconfigured cloud storage — continues to be a dominant trend and is responsible for 13% of breaches. Internal sources accounted for just 18% of cyber incidents, the report said.

The full report is available on the Verizon Business website.

About the Author

Kristal Kuykendall is editor, 1105 Media Education Group. She can be reached at [email protected].


Featured

  • AI-inspired background pattern with geometric shapes and fine lines in muted blue and gray on a dark background

    IBM Releases Granite 3.0 Family of Advanced AI Models

    IBM has introduced its most advanced family of AI models to date, Granite 3.0, at its annual TechXchange event. The new models were developed to provide a combination of performance, flexibility, and autonomy that outperforms or matches similarly sized models from leading providers on a range of benchmarks.

  • blue and green lines intersecting and merging in an abstract pattern against a light gray background with a subtle grid design

    Data Integration Market: Cloud Giants Down, AI Up

    "By 2027, AI assistants and AI-enhanced workflows incorporated into data integration tools will reduce manual intervention by 60 percent and enable self-service data management," according to research firm Gartner.

  • minimalist bookcase filled with textbooks featuring vibrant, solid-colored spines with no text, and a prominent number "25" displayed on one of the shelves

    OpenStax Celebrates 25th Anniversary

    OpenStax is celebrating its 25th anniversary as 2024 comes to a close. The open educational resources initiative from Rice University has served almost 37 million students in 153 countries and saved students nearly $3 billion in course material costs since its launch in 1999.

  • wind turbine and solar panels with glowing accents on the left and a digital shield surrounded by binary code on the right

    Educause Horizon Report: Sustainability Pressures Lead to Increased Cybersecurity Risks

    Educause recently released the 2024 Cybersecurity and Privacy Edition of its Horizon Report series, forecasting key trends, technologies, and practices shaping the future of cybersecurity and privacy in higher education.