Key Findings

  • Ransomware became the most common attack method of third-party attacks, initiating 27% of breaches analyzed in 2021.
  • Software publishers were the most common source of third-party breaches for a third consecutive year, accounting for 23% of related incidents.
  • The average time between an attack and the disclosure date was 75 days.
  • The healthcare industry was the most common victim of attacks caused by third parties, accounting for 33% of incidents in 2021.