278/69 Friday, May 22, 2026
The Verizon Data Breach Investigations Report 2026 (DBIR 2026) reveals that artificial intelligence (AI) is playing an increasingly significant role in accelerating cyberattacks, particularly in the discovery, analysis, and exploitation of software vulnerabilities. According to the report, attackers are now able to compromise systems within hours instead of the months previously required. The report analyzed more than 31,000 cybersecurity incidents and over 22,000 confirmed data breaches across 145 countries.
One of the report’s most significant findings is that vulnerability exploitation has overtaken stolen credentials and passwords as the primary initial access vector for cyberattacks for the first time in DBIR history. The report found that 31% of confirmed breaches involved exploitation of software vulnerabilities. In addition, Verizon noted that phone- and text-based social engineering attacks are becoming more successful than traditional phishing emails. Once attackers gain access to devices, they frequently attempt to steal internal system data in order to escalate privileges and expand their attacks further within compromised environments.
The report also warns organizations about the growing risks associated with “Shadow AI,” referring to unauthorized AI tools used within enterprises. Such tools may unintentionally expose sensitive information, including internal documents, business data, and source code, to external AI services. Verizon further highlighted the continued rise of third-party and supply chain risks. As a result, organizations are strongly advised to prioritize vulnerability management, rapid patching processes, governance of internal AI usage, user access control, and incident response preparedness to defend against increasingly fast-moving AI-driven cyber threats.
Source https://hackread.com/verizon-dbir-ai-hackers-exploit-vulnerabilities-breaches/