System intrusion breaches double in EMEA
The 2025 Data Breach Investigations Report (DBIR) from Verizon Business reveals a dramatic surge in global data breaches, with EMEA experiencing a significant increase in system intrusion breaches.

THESE BREACHES have skyrocketed, nearly doubling to 53% of breaches in the region in just one year.
The 2025 DBIR, which analysed over 22,000 security incidents, including 12,195 confirmed data breaches, found third-party involvement doubling to 30% in this year’s report and a 34% surge in vulnerability exploitation globally. In EMEA, nearly a third (29%) of breaches originated from within the organisation, a stark contrast to APAC, where only 1% of threats are from internal actors, and North America, where internal threats account for just 5% of breaches. Although EMEA experienced the highest percentage of breaches caused by internal actors, the number of insiders decreased by 41% in 2025. This decline was due to a faster increase in other types of breaches.
“The alarming rate of employee-driven breaches in EMEA underscores a critical need for businesses to strengthen their internal cybersecurity. Organisations must go beyond guarding against external threats and foster a culture of security awareness and accountability within,” says Sanjiv Gossain, group vice president and head of EMEA of Verizon Business. “The surge in system intrusions across EMEA is a clear warning to organisations to urgently fortify both external defences and internal controls through comprehensive employee training, robust access controls, and zero-trust frameworks.”
Ransomware attacks rose by 37% since last year, and are now present in 44% of breaches, despite a noticeable decrease in the median ransom amount paid.
Face-to-face focus on Ransomware on May 15
A ransomware recovery case study from Ross Eggleton, Group Director for Logistics, Supply Chain and Technology, Morrisons will be a highlight at the Tomorrow’s Warehouse conference – the show for warehouse occupiers to solve their operational challenges – on May 15 at the Coventry CBS Arena.
Gavin Knapp, Cyber Defence Technical Lead, Bridewell and James John, Incident Response Manager, Bridewell will also present on building a robust defence for ransomware attacks, bringing an expert view on how to prevent, prepare for and respond to ransomware attacks.