Tenable Response revealed that over 22 billion records were exposed worldwide amid 730 publicly disclosed data breaches in 2020.
35% of breaches were linked to ransomware attacks, resulting in tremendous financial cost.
14% of breaches were the result of email compromises, from January through October last year.
“Pre-existing vulnerabilities in virtual private network (VPN) solutions ? many of which were initially disclosed in 2019 or earlier -continue to remain a favorite target for cybercriminals and nation-state groups,” the report mentioned.
The threat landscape in 2020 was that threat actors relied on unpatched vulnerabilities in their attacks as well as chaining together multiple vulnerabilities as part of their attacks.
“Every day, cyber security professionals in India and the rest of the world are faced with new challenges and vulnerabilities that can put their organizations at risk,” said Satnam Narang, Staff Research Engineer at Tenable.
“The 18,358 vulnerabilities disclosed in 2020 alone reflects a new normal and a clear sign that the job of a cyber-defender is only getting more difficult as they navigate the ever-expanding attack surface,” Narang added.
From 2015 to 2020, the number of reported common vulnerabilities and exposures (CVEs) increased at an average annual percentage growth rate of 36.6 %.
In 2020, 18,358 CVEs were reported, representing a 6% increase over the 17,305 reported in 2019, and a 183% increase over the 6,487 disclosed in 2015.
Web browsers like Google Chrome, Mozilla Firefox, Internet Explorer and Microsoft Edge are the primary target for zero-day vulnerabilities, accounting for over 35% of all zero-day vulnerabilities exploited in the wild, it added.
“In 2021, it`s essential that we have the tools, awareness and intelligence to effectively reduce risk and eliminate blind spots. It`s only through looking at where we`ve come from that we can effectively plan for what lies ahead,” Narang noted.
(Image Courtesy: www.experian.com)