Employees Targeted For Valid Credentials
The Verizon 2013 Data Breach Investigations Report outlines an analysis of 621 breaches that occurred in 2012. The firm incorporates data from 19 sources, including breach investigations conducted by its own forensics team. The 2013 analysis found that social tactics were broadly tied to most breaches. Attackers use a phishing email containing either a malicious link or a dangerous file attachment. Weak or stolen passwords were used in 76 percent of breaches analyzed by Verizon. The goal appears to be to steal account credentials and bypass security controls by masquerading as a valid user on the network. Here's a closer look at the 10 most interesting findings from the report as well as advice on how to better protect your organization.