When it comes to discovery methods for financially-motivated incidents with Web application attacks, 88% of the time it was external sources that discovered it — and 74% of that time, it was the customer. In the 12% of the time that internal sources made the discovery, it was the internal audit, fraud detection or users the victim organizations could thank.
When it comes to "insider misuse," internal sources managed to identify the breach 55% of the time, and 45% was external.
Another "discovery" factor the Verizon report sought to quantify was the length of time it took for these breach discoveries. That ranged widely from "seconds" to discover 32% of crimeware to a long period of "months" to discover 63% of the stealthy cyber-espionage crimes that happened last year.
Sign up for Computerworld eNewsletters.