Verizon DBIR: Vulnerability Exploits Overtake Credentials as Top Access Vector

Verizon's DBIR finds vulnerability exploitation is now the most common initial access vector (31%), surpassing credential abuse, while supply‑chain breaches surged to 48% of reported breaches and ransomware was implicated in 48% of incidents; remediation of known critical vulnerabilities remains low (26% remediated), organizations face a heavier patch burden, and threat actors are increasingly using AI and mobile/social-engineering vectors.