1、DBIR2023 Data Breach Investigations Report200510K20K30K201020152020About the coverThe magnifier on the cover is intended to visually convey the effort the team made to refocus our energy and resources more on our core breach dataset.The graph that is magnified is simply a cumulative count of the num

2、ber of breaches in our dataset as the years have gone by since our first report.Long-time readers may notice the Vocabulary for Event Recording and Incident Sharing(VERIS)Framework trademark honeycombs,which are meant to convey the 4As(Actor,Action,Asset,Attribute)and their various enumerations.3202

3、3 DBIR Table of contentsTable of contents1Helpful definitions and chart guidance 4Introduction 7Summary of findings 82 Results and analysis Introduction 11Actors 12Actions 14Assets 17Attributes 193 Incident Classification Patterns Introduction 22System Intrusion 24Social Engineering 31Basic Web Appl

4、ication Attacks 35Miscellaneous Errors 40Denial of Service 42Lost and Stolen Assets 44Privilege Misuse 464 Industries Introduction 49Accommodation and Food Services 53Educational Services 54Financial and Insurance 55Healthcare 56Information 57Manufacturing 58Mining,Quarrying,and Oil&Gas Extraction+U

5、tilities 59Professional,Scientific and Technical Services 61Public Administration 62Retail 63Small and medium business 655 Regions Introduction 706 Wrap-up Year in review 747 Appendices Appendix A:Methodology 79Appendix B:VERIS mappings to MITRE ATT&CK 83Appendix C:VTRAC 20-year retrospective 84Appe

6、ndix D:Contributing organizations 8542023 DBIR Helpful definitions and chart guidanceHelpful definitions and chart guidanceHello,and welcome first-time readers!Before you get started on the 2023 Data Breach Investigations Report(DBIR),it might be a good idea to take a look at this section first.(For