A continued look at “ripple events” - multi-party security events - examining the size and frequency of these events, firmographics, as well as the velocity of spread of such events. (more available)

A review of the principals behind ransomware attacks and the key trends in this attack class, as presented in the claims information collected by Corvus. (more available)

Using Unit 42’s threat intelligence and incident response teams, this report reviews the state of ransomware, focusing on the prevalence, size of payments, techniques, and firmographics of recent events. (more available)

This annual report covers data from 1,602 penetration tests conducted in 2020 as well as survey information from 601 firms in the pursuit of understanding secure development, vulnerability remediation, and opportunities for process improvements. (more available)

A report on the ransomware claims seen along with the attack forms, firmographics, and technical measures of Coalition customers.

This inaugural report covers seven years of data from the DBIR as well as additional Verizon information, providing an overview of the cyber-espionage landscape. (more available)

The 17th edition of the Cost of a Data Breach report. Focuses on survey derived information to determine the cost of data breach incidents. (more available)

A meta-analysis of industry reports on the variety and forms of application exploits used in security incidents.

A survey of 500 IT leaders and 2000 remote-working employees within the UK and US on data losses. Focusing on human interaction issues such as email and insider threat events

A survey driven analysis of 500 security leaders from firms with 700 or more employees and revenues of $500 million or more. (more available)

A survey-driven report of 1,200 cybersecurity professionals from several countries. This survey focuses on the prevalence and impact of ransomware.

Endpoint security is the last line of defense. Now more than ever, effective endpoint protection is essential to the success of any cybersecurity program. (more available)

A survey of CISOs across 1,400 organizations supplemented with interviews of 100 individuals.

The annual Data Breach Investigations Report (DBIR) is the annual marque analysis of breach and incident information over the previous year. (more available)

Every year, enterprises spend millions on security technology and training — only to be caught on the hamster wheel of responding to incidents caused by recurrent human errors. (more available)

Using RiskRecon’s assessment information, explanatory models are built to demonstrate the value of technical information in predicting measures of risk at varying levels of greater technical insight. (more available)

An annual survey of 5,400 IT decision makers on the scope, nature, and ramifications of ransomware attacks.

This annual cyber readiness report focusing on the threats and losses as reported via a survey of over 6,000 organizations.

What makes for successful cybersecurity? Is there evidence that security investments result in measurable outcomes? How do we know what actually works and what doesn’t? (more available)

A survey of 200 global security professionals as to their opinions, responses, and outlook of the Solarwinds software chain compromise.

A review of current trends in the cyber insurance space, including key threat trends, claim frequency, severity, and pricing factors.