In response to today's Verizon 2017 Data Breach Investigations Report (DBIR), Brian Zeman, Chief Operating Officer, Prevalent, Inc., says: management: "Today’s 2017 Data Breach Investigations Report (DBIR) drives home four simple truths. It codifies that breaches are overwhelmingly perpetrated by outsiders, for financial gain, and that discovery sharply lags – enabling exfiltrations that do untold harm to consumers, businesses and their partners.
"The fourth truth that's made plain is the industry's continued blind spot: years after such major third-party breach events as the Target and Home Depot breaches, third-party risk management continues to be a blind spot. Recent Ponemon industry data shows that many organizations continue to fail at effective third-party risk assessment – with just 18% of respondents saying that their company assesses the cyber risks of third parties – yet this risk vector was unaddressed. Compelling breach events and the third-party risk mandates of new regulations such as NYCRR Part 500 and GDPR make it clear: third party risk management must be a top-five priority for any