Stolen credentials the leading cause of cyberbreaches in 2023 

Stolen credentials the leading cause of cyberbreaches in 2023 

Stolen credentials through phishing attacks were the most common cause of cyberbreaches among UK businesses last year, a new study has revealed. 

Cybersecurity firm IDEE commissioned an independent survey of more than 500 IT and cybersecurity professionals within UK businesses. It found that 61% of businesses experienced a cyberbreach in 2023, with 25% suffering three or more. 

When asked to name the cause or causes of their most recent breach, 35% said it was the result of stolen credentials (passwords and tokens) through phishing attacks, making it the most common reason. The next most frequently selected factor with 29% was ‘a vulnerability that was not patched by their cybersecurity solution’. 

The data also raises questions about the efficacy of password-based Multi-Factor Authentication (MFA) solutions, with 23% indicating that their MFA solution was bypassed or compromised in their latest breach. The same number (23%) suffered a breach due to a backdoor attack (malware that sidesteps authentication procedures to gain access). 

Al Lakhani, CEO of IDEE, said: “The data perfectly encapsulates the fundamental flaw behind so many MFA solutions: they are password reliant. 

“The cyber industry’s ‘best’ solutions in recent years have tried to bolster security with additional authentication factors like OTPs, push notifications or QR codes, but these methods remain tethered to centrally stored passwords and are therefore susceptible to phishing attacks.”