Exploitation of vulnerabilities almost tripled as a source of data breaches last year | CyberScoop<\/title> <meta name=\"description\" content=\"Verizon\u2019s annual data breach report identified the MOVEit hack as the \u201cposter child\u201d of the phenomenon.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/verizon-data-breach-report-vulnerabilities-moveit-hack\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Exploitation of vulnerabilities almost tripled as a source of data breaches last year\"> <meta property=\"og:description\" content=\"Verizon\u2019s annual data breach report identified the MOVEit hack as the \u201cposter child\u201d of the phenomenon.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/verizon-data-breach-report-vulnerabilities-moveit-hack\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2024-05-01T04:01:00+00:00\"> <meta property=\"article:modified_time\" content=\"2024-05-01T00:45:31+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg\"> <meta property=\"og:image:width\" content=\"1024\"> <meta property=\"og:image:height\" content=\"682\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"mbracken\"> <meta name=\"twitter:card\" content=\"summary_large_image\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1712700738g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css?m=1713212360g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1712858261g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=74528d75ce0daeb8628a\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/80302\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.5.2\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=80302\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fverizon-data-breach-report-vulnerabilities-moveit-hack%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fverizon-data-breach-report-vulnerabilities-moveit-hack%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-80302 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/verizon-data-breach-report-vulnerabilities-moveit-hack\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"24.59009009009\">\n<div class=\"single-article__header-content\" readability=\"29.64406779661\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/news\/cybersecurity\/\"> <span>Cybersecurity<\/span> <\/a> <\/li>\n<\/ul>\n<p> Verizon\u2019s annual data breach report identified the MOVEit hack as the \u201cposter child\u201d of the phenomenon. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"426\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year.jpg?resize=640%2C426&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg?resize=300,200 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg?resize=768,512 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg?resize=600,400 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg?resize=252,168 252w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg?resize=506,337 506w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-2.jpg?resize=1013,675 1013w\" sizes=\"(max-width: 1013px) 100vw, 1013px\"><figcaption> A view of the Verizon logo on Feb. 22, 2024 in New York City. (Photo by Kena Betancur\/VIEWpress) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"25.475746268657\"><body readability=\"51.576576576577\"><\/p>\n<p>Attacks that relied on the exploitation of vulnerabilities as their key path to a breach leaped a remarkable 180% last year compared to the year before, driven in large measure by <a href=\"https:\/\/cyberscoop.com\/schnieder-electric-siemens-energy-moveit-cl0p\/\">the sweeping MOVEit hack<\/a>, according to the annual Verizon data breach report released Wednesday.<\/p>\n<p>\u201cWe\u2019re attributing that increase to the use of zero-day vulnerabilities by ransomware actors,\u201d said Alex Pinto, who leads the Verizon team that wrote the report, referring to a kind of vulnerability that had been previously unknown. \u201cThe poster child of that, the thing that everybody was talking about last year, was the MoveIt vulnerability.\u201d<\/p>\n<p>Verizon was able to identify 1,567 breach notifications that related to the MOVEit file transfer service. By some estimates, it was <a href=\"https:\/\/www.wired.com\/story\/moveit-breach-victims\/\">the biggest attack last year<\/a> and arguably <a href=\"https:\/\/www.washingtonpost.com\/politics\/2023\/09\/29\/ransomware-gang-innovates-putting-pressure-victims-also-exposing-itself\/\">the biggest ransomware attack campaign ever<\/a>.<\/p>\n<p>Its impact stands in stark contrast to the kind of impact Verizon expected in last year\u2019s report from the log4j vulnerability, which spawned dire warnings at the time but ended up having a <a href=\"https:\/\/www.washingtonpost.com\/politics\/2023\/06\/06\/new-report-scrutinizes-ransomware-human-failings-cyber-log4j-more\/\">somewhat limited effect<\/a>.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>A possible explanation for the difference is that log4j is ubiquitous enough to have marshaled a widespread effort to counter the vulnerability ranging from mature companies on down, whereas with MOVEit, \u201cI don\u2019t believe that was over-represented on very mature companies,\u201d said Pinto, associate director of threat intelligence at Verizon Business. Notably, the education sector \u2014 viewed as <a href=\"https:\/\/www.route-fifty.com\/cybersecurity\/2024\/03\/schools-are-vulnerable-breaches-and-hackers-know-it\/395116\/\">one of the least-equipped<\/a> to fend off cyberattacks \u2014 was the sector most impacted.<\/p>\n<p>That wasn\u2019t the only conclusion of the annual encyclopedic Verizon Data Breach Report, which analyzed more than 10,000 breaches and more than 30,000 security incidents from an array of sources and collaborators. The report analyzes everything from how insider threats and user errors drive breaches to attacks broken down industry by industry.<\/p>\n<p>One area that <a href=\"https:\/\/cyberscoop.com\/generative-ai-chatbots-cybersecurity\/\">fell flat<\/a> was artificial intelligence\u2019s influence on data breaches.<\/p>\n<p>\u201cWe did keep an eye out for any indications of the use of the emerging field of generative artificial intelligence (GenAI) in attacks and the potential effects of those technologies, but nothing materialized in the incident data we collected globally,\u201d the report states. That\u2019s perhaps due to the fact that many existing attack methods \u201cdon\u2019t need to be more sophisticated to be successful against their targets,\u201d the report suggests.<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"3.9207920792079\">\n<div class=\"author-card\" readability=\"14\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/05\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year-1.jpg?w=640&ssl=1\" alt=\"Elias Groll\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by Elias Groll<\/h4>\n<p> Elias Groll is a senior editor at CyberScoop. He has previously worked as a reporter and editor at Foreign Policy, covering technology and national security, and at the Brookings Institution, where he was the managing editor of TechStream and worked as part of the AI and Emerging Technology Initiative. He is a graduate of Harvard University, where he was the managing editor of The Harvard Crimson. <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p>  <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Geopolitics<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/verizon-data-breach-report-vulnerabilities-moveit-hack\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Exploitation of vulnerabilities almost tripled as a source of data<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[78,324,1963,1170],"tags":[86,328,1964,1171],"class_list":["post-3342","post","type-post","status-publish","format-standard","hentry","category-cybersecurity","category-moveit-transfer","category-verizon-data-breach-investigations-report","category-zero-days","tag-cybersecurity","tag-moveit-transfer","tag-verizon-data-breach-investigations-report","tag-zero-days"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybersecurity\/\" rel=\"category tag\">Cybersecurity<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/moveit-transfer\/\" rel=\"category tag\">MOVEit Transfer<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/verizon-data-breach-investigations-report\/\" rel=\"category tag\">Verizon Data Breach Investigations Report<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/zero-days\/\" rel=\"category tag\">zero-days<\/a>","tag_info":"zero-days","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/3342","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=3342"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/3342\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=3342"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=3342"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=3342"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":3342,"date":"2024-04-30T23:01:00","date_gmt":"2024-05-01T04:01:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=80302"},"modified":"2024-04-30T23:01:00","modified_gmt":"2024-05-01T04:01:00","slug":"exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/04\/30\/exploitation-of-vulnerabilities-almost-tripled-as-a-source-of-data-breaches-last-year\/","title":{"rendered":"Exploitation of vulnerabilities almost tripled as a source of data breaches last year"},"content":{"rendered":"