$1.5 billion worth of users’ personal identifying information (PII) was stolen by cybercriminals in 2021 according to a report from Black Kite.
Further analysis showed that ransomware attacks were the most common, healthcare attackers were the most targeted, and attackers mostly exploited software flaws to accomplish their goals.
To conduct the report, Black Kite examined 81 third-party breaches that accounted for over 200 public disclosures.
Other breaches methods apart from ransomware include unauthorized network access and unsecured servers/databases. According to the report, the two methods mainly involve cracking weak passwords and unsecured internet-facing hardware and software.
The report showed healthcare top the list of industries targeted due to the COVID-19 pandemic.
Software publishers topped the list of third-party vendors targeted by cybercriminals. Others on the list include IT service providers, healthcare tech providers, admin services, and cybersecurity providers.
For more information, read the original story in TechRepublic.