Verizon’s 2025 Data Breach Investigations Report: System Intrusions Behind 80% of APAC Breaches

Verizon Business has released its 2025 Data Breach Investigations Report (DBIR), sounding the alarm on a surge of system intrusions across the Asia-Pacific region. The report reveals that four out of five data breaches in the region stemmed from such attacks – up from 38% the previous year.

Now in its 18th year, the report analyzed more than 22,000 security incidents, including 12,195 confirmed data breaches spanning 139 countries. Malware increased from 58% last year in APAC to 83% this year, with Ransomware accounting for 51% of breaches.

“This year’s report reinforces the growing complexity and persistence of cyber threats facing organizations worldwide. In the Asia-Pacific region in particular, external actors are targeting critical infrastructure and exploiting third-party vulnerabilities. The rising incidence of breaches highlights the imperative for businesses to reassess their risk frameworks,” said Robert Le Busque, Regional Vice President, Asia Pacific for Verizon Business.

Among the findings, the number of social engineering breaches has been on the decline since 2021, and only accounts for 20% of breaches in 2025 due, in part, to the sharp increase of system intrusion. Malware in data breaches jumped significantly, from 58% last year to 83% this year with email being the key vector for distributing various types of malware.

Ransomware now accounts for 51% of the total breaches in this region and remains highly visible as threat actors often publicize breaches. Ransomware attacks rose by 37% since last year, and are now present in 44% of breaches, despite a noticeable decrease in the median ransom amount paid.

The percentage of breaches involving third parties doubled, highlighting the risks associated with supply chain and partner ecosystems. Human involvement in breaches remains high, with a significant overlap between social engineering and credential abuse.

The 2025 DBIR also shed light on industry-specific trends, revealing an alarming rise in espionage-motivated attacks in the Manufacturing and Healthcare sectors, and persistent threats to the Education, Financial, and Retail industries. The report also highlighted the disproportionate impact of ransomware on small and medium-sized businesses (SMBs).

Channel Impact^®
Verizon Business’s 2025 DBIR serves as a wake-up call for partners to help customers take action to strengthen their cybersecurity posture and mitigate the risks posed by evolving cyber threats. With the median ransom payment to cybercriminals last year being US$115,000, this is a significant amount for many SMBs. By adopting a proactive and comprehensive approach to cybersecurity, businesses can help safeguard their assets, protect their customers, and ensure their long-term success in an increasingly digital world.