Threat actors know any breach strategy in the cloud depends on getting social engineering right.
Verizon found that 85% of the breaches involve a human element, which threat actors prefer by a 24% margin over breaches involving credentials.
The company also found a connection between the increase in social engineering breaches and cloud-based email servers being compromised. That is because emails are being minded for privileged credentials and used for mass mailings of phishing attempts and ransomware delivery, the National Law Review noted.
Into the data breach
These days, threat actors usually combine technologies and techniques in their strategies to breach an organization.