70 percent of major breaches caused by overlapping risks

No Comments
Businesswoman in risk metering and management concept

New research from business risk specialist Panaseer shows that major breaches are being caused by toxic combinations -- overlapping risks that compound and amplify each other, until they form a critical vulnerability.

The company analyzed 20 major breaches that have occurred over the past five years. In 14 of the 20 cases, it found clear evidence of compounding risks forming toxic combinations that magnified the overall impact.

Examples include the AT&T breach in 2024 which started with credentials being harvested by an infostealer. This was compounded by a cloud database that didn’t have 2FA, the undetected use of reconnaissance tools to find high-value datasets, and undetected exfiltration of large volumes of data.

This breach led to both reputational and financial damage. AT&T has since been ordered to pay customers $2,500 each if they can prove they were impacted.

Similar chains of events mark breaches at MGM Resorts in 2023, Okta and Uber (both in 2022), and the Colonial Pipeline breach in 2021.

What these findings indicate is that a single vulnerability is rarely the only thing behind a major breach. The problem is that although individual issues don’t look that severe on their own the combination of issues adds up to a major problem.

Panaseer’s senior product leader Nick Emanuel writes on the company’s blog, “Organizations need the ability to see these patterns forming. That requires more than human intuition. It calls for data-driven analysis across millions of assets and signals. This is where platforms like Panaseer’s Cyber Control Management (CCM) can help make a difference. Panaseer helps identify high-risk scenarios where multiple weaknesses in cybersecurity defences overlap. Panaseer’s compound risk metrics instantly reveal areas with higher exploitability across multiple cyber domains, combined with business context, so you can focus on the most critical risks first.”

You can see more detail about the breaches on the Panaseer blog.

Image credit: Elnur_/depositphotos.com

Tags: , , ,
No Comments
Got News? Contact Us

Recent Headlines

70 percent of major breaches caused by overlapping risks

IObit releases Malware Fighter 13 with pre-boot scanning and behavior-based detection

Job automation -- could AI replace your CEO? [Q&A]

Instagram adds Watch History so you can find Reels again

Microsoft trials new Copy & Search feature in latest Windows 11 builds

Update PowerToys to kill the annoying theme changing bug

AI-powered malware surges as cybercriminals exploit automation and geopolitical tensions

Most Commented Stories

Microsoft is making every PC an AI PC with new Hey Copilot voice command

14 Comments

Apple, predictably, thinks Windows 10 users should move to macOS – here’s why

14 Comments

Windows 11 installation no longer lets you skip creating a Microsoft Account

12 Comments

Nearly a third of US and UK consumers plan to switch internet providers, survey finds

6 Comments

CCleaner 7 debuts with redesigned interface and smarter cleanup tools

5 Comments

AdGuard Ad Blocker lands in the Microsoft Store

4 Comments

Microsoft says Windows update may have caused login problems

4 Comments

Mozilla commits to updating Firefox on Windows 10

3 Comments

Why Trust Us



At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

BetaNews, your source for breaking tech news, reviews, and in-depth reporting since 1998.

© 1998-2025 BetaNews, Inc. All Rights Reserved. About Us - Privacy Policy - Cookie Policy - Sitemap.