PRO+ Premium Content/Information Security

Thank you for joining!

Access your Pro+ Content below.

June 2017, Vol. 19, No. 5

Verizon DBIR 2017: Basic cybersecurity focus misplaced

This article is part of the Information Security issue of June 2017, Vol. 19, No. 5

Editor's note: this is part two of a two-part series covering the Verizon DBIR 2017. You can read part one, regarding the rise of ransomware and pretexting here. A growing theme across the recent years of the Verizon Data Breach Investigation Report (DBIR) is how the lack of basic cybersecurity plays a part in many of the breaches and security incidents every year, but Verizon suggested vulnerability patching may not be as impactful as once thought. Dave Hylender, senior risk analyst at Verizon Business, told SearchSecurity the aim of the Verizon DBIR was to focus on the data and to "keep opinion out of it" whenever possible, because it could be difficult to give cybersecurity recommendations to the diverse audience of the DBIR. However, experts noted that the data alone was enough to highlight basic cybersecurity practices that were failing, such as limiting password reuse and implementing multifactor authentication (MFA). According to the 2017 Verizon DBIR, 81% of breaches leveraged "stolen passwords and/or weak or guessable ...

Access this PRO+ Content for Free!

You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login above.
Please provide a Corporate Email Address.
You forgot to provide your first name.
You forgot to provide your last name.
You forgot to provide a job title.
You forgot to provide a company name.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

Features in this issue

Experian's Tom King tackles role of CISO from the ground up
by Alan R. Earls
An early career as a geologist helped the veteran financial services CISO thrive in the security field. The CISO role is now broader than technical functions, he says.
Verizon DBIR 2017: Basic cybersecurity focus misplaced
by Michael Heller
Basic cybersecurity measures like limiting password reuse and implementing multifactor authentication could be big benefits, according to the Verizon DBIR 2017.

Columns in this issue

Report: Threat hunting is more SOC than intel
by Kathleen Richards
Threat hunting is driven by alerts with less emphasis on cyberthreat intelligence, according to researchers. Yet 60% of those surveyed cited measurable security improvements.
Wendy Nather: 'We're on a trajectory for profound change'
by Marcus J. Ranum
This former CISO talks about her uncharted path from international banking to industry analysis. What's next for infosec? We ask the security strategist those questions and more.

View Information Security Archives

Access your Pro+ Content below.

Verizon DBIR 2017: Basic cybersecurity focus misplaced

Features in this issue

Experian's Tom King tackles role of CISO from the ground up

Verizon DBIR 2017: Basic cybersecurity focus misplaced

Columns in this issue

Report: Threat hunting is more SOC than intel

Wendy Nather: 'We're on a trajectory for profound change'