An in-depth analysis of the most significant third-party cyber risks and incidents in 2023.
Covering adversary activity in 2023, this report is the first to use SecurityScorecard’s new BreachDetails threat intelligence solution. With BreachDetails, SecurityScorecard increased the level of breach data coverage by 50% compared to other breach notice providers by using AI to analyze news articles, ransomware notifications, and international sources.
Key findings:
- 75% of third-party breaches targeted the software and technology supply chain
- 64% of third-party breaches linked to C10p cybercrime group
- 61% of third-party breaches attributed to MOVEit (CVE-2023-34362)