Basic Web Application Attacks
Any incident in which a web application was the vector of attack. This includes exploits of code-level vulnerabilities in the application as well as thwarting authentication mechanisms.
All dates on the interactive DBIR website represent the calendar year of the incident. These values will differ from the print DBIR in cases where the DBIR collection period was used. This does not affect the validity of the analysis. To read more, see the Methodology section of the print DBIR.
900
Confirmed breaches
4,002
Total incidents
Pattern Basic Web Application Attacks
Incidents Across All Patterns
Show
Measure
This line chart shows how the breaches in Basic Web Application Attacks compare to the other patterns over time.
breaches
Industries
Basic Web Application Attacks vs. industries
Show
Understanding the relationship between patterns and industries is a cheat-sheet for how to plan what to protect in your organization. If you know the most likely doors attackers will use to access your defenses, then you also know where to put the most locks. While all basic security controls must be addressed, this inside knowledge allows you to place priority for resource allocation on the areas where your organization needs it most.
Year