Over 40bn records exposed in 2021: Tenable


By Dylan Bushell-Embling
Monday, 24 January, 2022

Over 40bn records exposed in 2021: Tenable

Over 40 billion records were exposed in cyber incidents during 2021, up nearly 78% from 2020, according to research from Tenable.

Based on an analysis of publicly disclosed information between November 2020 and October 2021, Tenable reported that there were 1825 data breach incidents during the year, up from just 730 in 2020.

The research found that 236 of the breaches analysed happened in APAC, with around 3.5 billion records exposed in the region — 8.6% of the global tally.

Meanwhile, during the year there were 21,957 common vulnerabilities and exposures reported, up 19.6% from 2020. From 2016 to 2021 the number of Common Vulnerabilities and Exposures (CVEs) increased at an average annual percentage growth rate of 28.3%.

Ransomware was a major driver of the increased threat activity, responsible for approximately 38% of all breaches and 31% of breaches in APAC.

Meanwhile, 10% of breaches in APAC were unsecured cloud databases, compared to a global average of just 6%. And while healthcare and education remain the most targeted industries worldwide, in APAC the technology industry and governments were the two top victims of breaches.

“In their 2020–2021 report, the Australian Cyber Security Centre (ACSC) emphasised how ransomware and exploitation of unpatched vulnerabilities were two key root causes of cyber incidents and data breaches among Australian organisations,” Tenable Staff Research Engineer Satnam Narang said.

“Our findings show a similar trend, in that most data breaches in APAC stem from the same origins, demonstrating the multifaceted threat landscape facing Australian security leaders.”

Narang added that the results demonstrate the additional security challenges associated with the rapidly transforming nature of the enterprise IT network.

“With many organisations accelerating their digital transformation and adoption of SaaS solutions, and the democratisation of hybrid work models, the nature of an organisation’s network has changed drastically,” he said.

“It is essential that security leaders focus on building a stronger understanding of all the potential attack paths on their systems, and leverage available security frameworks such as the Essential Eight, to bolster their cyber defences.”

Image credit: ©stock.adobe.com/au/Blue Planet Studio

Related Articles

The problem with passwords is not what you think

When it comes to secure authentication, there seems to be a lesson we're not learning.

Secure-by-design software development for digital innovation

The rise of DevSecOps methodologies and developments in AI offers every business the opportunity...

Bolstering AI-powered cybersecurity in the face of increasing threats

The escalation of complex cyber risks is becoming a pressing issue for those in business...

Content from other channels on our network

Central Highlands Water chooses Infor for ERP

The benefits and risks of AI usage in the public sector

Cobalt Iron earns patent on analytics-based dynamic authorisation control

Shoalhaven City Council uses AI to deliver safer roads to the community

Smart technologies: helping councils improve community services and sustainability

LAPP ÖLFLEX CLASSIC 110 control cables empower industrial connectivity

Delivering Dependable Fibre Optic Solutions for Challenging Environments through Enhanced Beam Cable Assemblies

Indonesia moves towards power grid resilience

Qld networks launch powerline safety campaign

Virtual power plants installed at regional schools

Govt funds telco resilience tech, responds to LEOSat report

Extreme enclosure heli-lifted into an extreme environment

Cyber secured at critical network device level has never been more important

Cradlepoint 'Vehicle as a Node' is the Next Frontier for Emergency Services

Govt responds to post-incident review of Optus outage

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd