A review of trends in e-commerce security and attacks based upon a variety of sources collected via Impreva Research labs.

Using governmental reports of bank secrecy act (BSA) data, this report evaluate the threat patterns and magnitudes in ransomware events over the first half of 2021. (more available)

An analysis of cyber claims combined with metaanalysis from other reports, focusing on ransomware. Frequency, loss forms, and suggested controls are discussed. (more available)

A survey of recent breaches occurring over the past year as identified and classified via AuditAnalytic’s commercial database of breach information. (more available)

The regular update to this threat intelligence series. Focuses on changes in attacker behaviors in the first half of 2021, with particular focus on DDOS activity, ransomware actions, supply chain attacks, and COVID-19 related patterns. (more available)

A continued look at “ripple events” - multi-party security events - examining the size and frequency of these events, firmographics, as well as the velocity of spread of such events. (more available)

A review of the principals behind ransomware attacks and the key trends in this attack class, as presented in the claims information collected by Corvus. (more available)

This is the threat landscape report from Fortinet for the first half of 2021. It covers threat detection changes and attack changes from January to July. (more available)

Using Proofpoint deployments across the globe over 2020, this report reviews the email messages, URLs, and attachments being communicated and what these mean for email and cyber security. (more available)

Using Unit 42’s threat intelligence and incident response teams, this report reviews the state of ransomware, focusing on the prevalence, size of payments, techniques, and firmographics of recent events. (more available)

This annual report covers data from 1,602 penetration tests conducted in 2020 as well as survey information from 601 firms in the pursuit of understanding secure development, vulnerability remediation, and opportunities for process improvements. (more available)

A report on the ransomware claims seen along with the attack forms, firmographics, and technical measures of Coalition customers.

This inaugural report covers seven years of data from the DBIR as well as additional Verizon information, providing an overview of the cyber-espionage landscape. (more available)

A meta-analysis of industry reports on the variety and forms of application exploits used in security incidents.

A survey driven analysis of 500 security leaders from firms with 700 or more employees and revenues of $500 million or more. (more available)

A survey-driven report of 1,200 cybersecurity professionals from several countries. This survey focuses on the prevalence and impact of ransomware.

Endpoint security is the last line of defense. Now more than ever, effective endpoint protection is essential to the success of any cybersecurity program. (more available)

The annual Data Breach Investigations Report (DBIR) is the annual marque analysis of breach and incident information over the previous year. (more available)

Do exploit code releases help or harm defenders? We decided to put this hotly contested debate to the test. The seventh volume of the Prioritization to Prediction series produced in conjunction with the Cyentia Institute attacks this debate from all angles. (more available)

Every year, enterprises spend millions on security technology and training — only to be caught on the hamster wheel of responding to incidents caused by recurrent human errors. (more available)

An annual survey of 5,400 IT decision makers on the scope, nature, and ramifications of ransomware attacks.