T
3

Saw a stat that 90% of data breaches come from phishing, not hacked servers

I used to think most breaches were from people cracking passwords or exploiting bugs, but a report from Verizon's 2024 DBIR changed my mind. Have you shifted your security advice to clients based on that kind of data?
2 comments

Log in to join the discussion

Log In
2 Comments
dianas50
dianas505d ago
The 2024 DBIR really opened my eyes too. Now when I talk to clients, I focus almost entirely on email security basics like MFA and smart link scanning instead of just patching servers. I tell them to run a simple test: have someone send a fake phishing link to your team and see how many click it, most people are shocked by the results. After that, we set up strict rules around forwarded emails and never let anyone approve payment requests through email alone.
5
xena_brown50
Is it really that serious though? I mean, phishing has been around forever and most people have gotten pretty good at spotting the obvious fake emails. Seems like the bigger problem is still people using "password123" on their company accounts.
4