This report shares seven key lessons learned by breach victims. Each lesson includes simple recommendations and tips, many of which do not require organizations to purchase any tools.

Sophos’ annual threat report drawn from incident response engagements with customers.

This is the ninth edition of the ENISA Threat Landscape (ETL) report, an annual report on the status of the cybersecurity threat landscape that identifies prime threats, major trends observed with respect to threats, threat actors and attack techniques, and also describes relevant mitigation measures.

Over 5,100 IT and security professionals across 27 countries were asked about their organizations’ approaches to updating and integrating security architecture, detecting and responding to threats, and staying resilient when disaster strikes. They shared a wide range of insights, struggles, strategies, and successes. Responses were analyzed in multiple ways and key findings were extracted.

A review of trends in e-commerce security and attacks based upon a variety of sources collected via Impreva Research labs.

Using data from Corvus’s scanning platform, claims information, and other unnamed sources, this report into cyber and technology errors and omissions focuses on litigation risk, ransomware trends, and selected technology updates.

Using governmental reports of bank secrecy act (BSA) data, this report evaluate the threat patterns and magnitudes in ransomware events over the first half of 2021. A historical view of trends in financial reports, both frequency and magnitudes, is included.

A survey of recent breaches occurring over the past year as identified and classified via AuditAnalytic’s commercial database of breach information. Include firmographic and case study information.

This annual report on trends in submitted claims in the cybersecurity insurance space. With particular focus on current trends such as ransomware and company firmographics.

A survey of 250 UK cybersecurity professionals on their perspectives of the state, benefits, and challenges in security process automation.

A survey analysis of 455 business leaders on their sentiments regarding ransomware.

An insurance oriented treatment on key trends impacting cyber insurance, based upon meta-analysis from several sources, including Advisen, McKinsey, Sophos and others.

A continued look at “ripple events” - multi-party security events - examining the size and frequency of these events, firmographics, as well as the velocity of spread of such events.

A review of the principals behind ransomware attacks and the key trends in this attack class, as presented in the claims information collected by Corvus.

Using Unit 42’s threat intelligence and incident response teams, this report reviews the state of ransomware, focusing on the prevalence, size of payments, techniques, and firmographics of recent events.

This annual report covers data from 1,602 penetration tests conducted in 2020 as well as survey information from 601 firms in the pursuit of understanding secure development, vulnerability remediation, and opportunities for process improvements.

A report on the ransomware claims seen along with the attack forms, firmographics, and technical measures of Coalition customers.

This inaugural report covers seven years of data from the DBIR as well as additional Verizon information, providing an overview of the cyber-espionage landscape. Attackers, motivations, methods, and victims are all focus areas.

The 17th edition of the Cost of a Data Breach report. Focuses on survey derived information to determine the cost of data breach incidents.

A meta-analysis of industry reports on the variety and forms of application exploits used in security incidents.

A survey of 500 IT leaders and 2000 remote-working employees within the UK and US on data losses. Focusing on human interaction issues such as email and insider threat events