![[The AI Show Episode 144]: ChatGPT’s New Memory, Shopify CEO’s Leaked “AI First” Memo, Google Cloud Next Releases, o3 and o4-mini Coming Soon & Llama 4’s Rocky Launch](https://www.marketingaiinstitute.com/hubfs/ep%20144%20cover.png)
.jpg?width=1920&height=1920&fit=bounds&quality=70&format=jpg&auto=webp#)
-Resident-Evil-4-Remake-Review---SPOILER-FREE-RESIDENT-EVIL-4-REVIEW-00-04-20.png?width=1920&height=1920&fit=bounds&quality=70&format=jpg&auto=webp#)
![Some of the best Pixel 9 Pro Fold accessories for you to try [Video]](https://i0.wp.com/9to5google.com/wp-content/uploads/sites/4/2024/11/Pixel-9-Pro-Fold-accessories-3.jpg?resize=1200%2C628&quality=82&strip=all&ssl=1){kind=tracking}
![Apple to Shift Robotics Unit From AI Division to Hardware Engineering [Report]](https://www.iclarified.com/images/news/97128/97128/97128-640.jpg)
![Apple Shares New Ad for iPhone 16: 'Trust Issues' [Video]](https://www.iclarified.com/images/news/97125/97125/97125-640.jpg)
Verizon DBIR Report – Small Businesses Emerges as Prime Targets for Ransomware Attacks
Verizon’s 2025 Data Breach Investigations Report (DBIR) has revealed a disturbing trend: small and medium-sized businesses (SMBs) have become disproportionately targeted by ransomware attacks. The comprehensive report, analyzing over 22,000 security incidents including 12,195 confirmed data breaches, found ransomware present in a staggering 88% of breaches affecting smaller organizations. This marks a significant shift in […] The post Verizon DBIR Report – Small Businesses Emerges as Prime Targets for Ransomware Attacks appeared first on Cyber Security News.
Verizon’s 2025 Data Breach Investigations Report (DBIR) has revealed a disturbing trend: small and medium-sized businesses (SMBs) have become disproportionately targeted by ransomware attacks.
The comprehensive report, analyzing over 22,000 security incidents including 12,195 confirmed data breaches, found ransomware present in a staggering 88% of breaches affecting smaller organizations.
This marks a significant shift in attack patterns as cybercriminals increasingly focus on targets with typically less robust security infrastructure.
The financial implications for small businesses are particularly concerning, with the median ransom payment reaching US$115,000 in the past year – a sum that represents an existential threat to many SMBs operating on tight margins.
Despite this pressure, the report indicates a positive trend with 64% of victim organizations now refusing to pay ransoms, up from 50% two years ago, suggesting improving resilience and backup strategies among some businesses.
Verizon analysts identified a troubling connection between third-party vulnerabilities and ransomware attacks targeting small businesses.
According to the report, third-party involvement in breaches has doubled to 30%, creating an expanded attack surface that smaller organizations often struggle to monitor effectively.
This represents a significant shift in how threat actors gain initial access to SMB environments.
Credential theft remains the primary entry vector for these attacks, accounting for 22% of breaches, closely followed by vulnerability exploitation at 20% – which saw a concerning 34% increase over the previous year.
Small businesses, often operating with limited IT resources and outdated systems, present attractive targets for attackers employing these methods.
Attack Chain Analysis: The SMB Vulnerability Gap
The typical ransomware attack chain targeting small businesses begins with initial access through compromised credentials or unpatched vulnerabilities.
Once inside the network, attackers employ lateral movement techniques to identify and access critical systems before deploying encryption payloads.
A sample of observed PowerShell commands from recent attacks shows how attackers disable security features:-
Set-MpPreference -DisableRealtimeMonitoring $true
Set-MpPreference -DisableBehaviorMonitoring $true
Stop-Service WinDefend -ForceThe attack methodology reveals a sophisticated understanding of small business environments, where detection gaps and limited security monitoring create perfect conditions for ransomware deployment.
The report notes that many SMBs lack proper segmentation between critical systems, allowing rapid encryption of both operational systems and backups.
Chris Novak, Vice President of Global Cybersecurity Solutions at Verizon Business, emphasized the need for “robust security measures, including strong password policies, timely patching of vulnerabilities, and comprehensive security awareness training for employees”.
For small businesses with limited resources, focusing on these fundamental security controls represents the most effective defense against the rising tide of ransomware attacks.
Malware Trends Report Based on 15000 SOC Teams Incidents, Q1 2025 out!-> Get Your Free Copy
The post Verizon DBIR Report – Small Businesses Emerges as Prime Targets for Ransomware Attacks appeared first on Cyber Security News.
