Business NewsTechnologySystem Intrusion, Social Engineering, Web App Attacks Fuel 97% Of Data Breaches In APAC: Verizon Report
ADVERTISEMENT

System Intrusion, Social Engineering, Web App Attacks Fuel 97% Of Data Breaches In APAC: Verizon Report

Malware was identified in 83% of APAC data breaches; ransomware hits half of all cases.

23 Apr 2025, 07:42 PM IST i
NDTV Profit
NDTV Profit
<div class="paragraphs"><p>There has been a surge in system intrusions across the Asia-Pacific region, with four out of five data breaches in the region stemming from such attacks, the 2025 Data Breach Investigations Report by Verizon Business shows (Image: Freepik)</p></div>
There has been a surge in system intrusions across the Asia-Pacific region, with four out of five data breaches in the region stemming from such attacks, the 2025 Data Breach Investigations Report by Verizon Business shows (Image: Freepik)
Show Quick Read
Summary is AI Generated. Newsroom Reviewed

There has been a surge in system intrusions across the Asia-Pacific region, with four out of five data breaches in the region stemming from such attacks — up from 38% the previous year — the 2025 Data Breach Investigations Report by Verizon Business shows.

Collectively, 97% of APAC breaches were caused by just three tactics: system intrusion, social engineering and basic web application attacks, highlighting the region's increasingly concentrated cyber threat landscape, according to the report.

The report analysed more than 22,000 security incidents, including 12,195 confirmed data breaches spanning 139 countries. Malware increased from 58% last year in APAC to 83% this year, with ransomware accounting for 51% of breaches.

Key APAC Findings 

  • Malware: Malware in data breaches jumped significantly, from 58% last year to 83% this year, with email being the key vector for distributing various types of malware.

  • Ransomware: Ransomware now accounts for 51% of the total breaches in this region and remains highly visible as threat actors often publicise breaches.

  • Social Engineering: The absolute number of social engineering breaches has been on the decline since 2021; it only accounts for 20% of breaches in 2025 partly due to the sharp increase of system intrusion.

Key Global Findings

  • Exploitation Of Vulnerabilities: This initial attack vector saw a 34% increase, with a significant focus on zero-day exploits targeting perimeter devices and virtual private networks.

  • Ransomware: Ransomware attacks rose by 37% since last year, and are now present in 44% of breaches, despite a noticeable decrease in the median ransom amount paid.

  • Third-Party Involvement: The percentage of breaches involving third parties doubled, highlighting the risks associated with supply chain and partner ecosystems.

  • Human Element: Human involvement in breaches remains high, with a significant overlap between social engineering and credential abuse.

Industry-Specific Trends

The report also sheds light on industry-specific trends, showing an alarming rise in espionage-motivated attacks in manufacturing and healthcare sectors, and persistent threats to education, financial and retail industries.

The report also highlighted the disproportionate impact of ransomware on small and medium-sized businesses. With the median ransom payment to cybercriminals last year being $115,000, this is a significant amount for many SMBs. 

ALSO READ

Intel Launches AI-Powered Chipset For Software-Defined Vehicles, Announces New Automotive Partnerships
Opinion
Intel Launches AI-Powered Chipset For Software-Defined Vehicles, Announces New Automotive Partnerships
Read More
Watch LIVE TV, Get Stock Market Updates, Top Business, IPO and Latest News on NDTV Profit. Feel free to Add NDTV Profit as trusted source on Google.
OUR NEWSLETTERS
By signing up you agree to the Terms & Conditions of NDTV Profit
ADVERTISEMENT