Over 40bn records exposed in 2021: Tenable


By Dylan Bushell-Embling
Monday, 24 January, 2022

Over 40bn records exposed in 2021: Tenable

Over 40 billion records were exposed in cyber incidents during 2021, up nearly 78% from 2020, according to research from Tenable.

Based on an analysis of publicly disclosed information between November 2020 and October 2021, Tenable reported that there were 1825 data breach incidents during the year, up from just 730 in 2020.

The research found that 236 of the breaches analysed happened in APAC, with around 3.5 billion records exposed in the region — 8.6% of the global tally.

Meanwhile, during the year there were 21,957 common vulnerabilities and exposures reported, up 19.6% from 2020. From 2016 to 2021 the number of Common Vulnerabilities and Exposures (CVEs) increased at an average annual percentage growth rate of 28.3%.

Ransomware was a major driver of the increased threat activity, responsible for approximately 38% of all breaches and 31% of breaches in APAC.

Meanwhile, 10% of breaches in APAC were unsecured cloud databases, compared to a global average of just 6%. And while healthcare and education remain the most targeted industries worldwide, in APAC the technology industry and governments were the two top victims of breaches.

“In their 2020–2021 report, the Australian Cyber Security Centre (ACSC) emphasised how ransomware and exploitation of unpatched vulnerabilities were two key root causes of cyber incidents and data breaches among Australian organisations,” Tenable Staff Research Engineer Satnam Narang said.

“Our findings show a similar trend, in that most data breaches in APAC stem from the same origins, demonstrating the multifaceted threat landscape facing Australian security leaders.”

Narang added that the results demonstrate the additional security challenges associated with the rapidly transforming nature of the enterprise IT network.

“With many organisations accelerating their digital transformation and adoption of SaaS solutions, and the democratisation of hybrid work models, the nature of an organisation’s network has changed drastically,” he said.

“It is essential that security leaders focus on building a stronger understanding of all the potential attack paths on their systems, and leverage available security frameworks such as the Essential Eight, to bolster their cyber defences.”

Image credit: ©stock.adobe.com/au/Blue Planet Studio

Related Articles

How AI can help businesses manage their cyber risks

Artificial intelligence can be a powerful ally in the fight against cyberthreats.

Boosting software security with a binary approach

The discovery of a leaked access token earlier this year has shone a light on why the method we...

Safeguarding against security risks in AI agents

The chain of events and interactions initiated by AI agents can be vast and complex, often...

Content from other channels on our network

When bus depots become energy hubs

SA Power Networks to trial eco-switchgear

Funding boost to transition heavy vehicles to electric

How can we manage our grid workload efficiently and sustainably?

Western Power to expand use of drones this summer

New haptic patch transmits complexity of touch to the skin

Creating dual waveguides with femtosecond laser writing

Novel way to transmit data via laser light

Generating electricity from moisture in the air

Turning RFID tags into scalable passive sensors

ACMA reveals new telco industry rules for major outages

Nokia selected by Vodafone Idea as 4G and 5G partner in India

Significant progress in improving Australia's network resilience

New record set for wireless data transmission

RFUANZ report: a call to action on training

  • All content Copyright © 2024 Westwick-Farrow Pty Ltd