Research February 28, 2024

Global Third-Party Cybersecurity Breach Report

Download the Report

An in-depth analysis of the most significant third-party cyber risks and incidents in 2023.

Covering adversary activity in 2023, this report is the first to use SecurityScorecard’s new BreachDetails threat intelligence solution. With BreachDetails, SecurityScorecard increased the level of breach data coverage by 50% compared to other breach notice providers by using AI to analyze news articles, ransomware notifications, and international sources.

Key findings:

  • 75% of third-party breaches targeted the software and technology supply chain
  • 64% of third-party breaches linked to C10p cybercrime group
  • 61% of third-party breaches attributed to MOVEit (CVE-2023-34362)