F5 Labs released a new report, Lessons Learned from a Decade of Breaches, which researches 429 breach cases spanning 12 years, 37 industries, and 26 countries. The data shows that attackers started either directly at the web application or attacked a user for their identity in 86% of the cases. The report also examines the patterns by industry to determine which industries have more breaches. It also provides insight into the root causes (the ultimate target) and how they differ from the initial attack patterns.”]
Source: https://informationsecuritybuzz.com/news/f5-report-apps-identities-initial-targets-86-breaches/