In 2022, SpyCloud's Annual Identity Exposure Report highlighted several key trends. One of the top trends was the growing credential exposure due to malware, with 22.3 million unique infected machines and 22 billion device and session cookies. The government sector remained at high risk, with 61% of credentials reused in the US and international. Vast PII exposure helped criminals innovate, and session cookies were identified as the ultimate steal. The report also spotlighted malware and how infections create identity exposure. The average breach size was 19.92 million records, with phone numbers, full names, addresses, social media handles, dates of birth, international IDs, full SSNs, bank account numbers, driver's licenses, passport numbers, credit card numbers, and government credentials being the most common types of exposed data. In 2022, the top plain text password was "123456". The report also highlighted password trends and the top trending topics, including love/family, streaming & TV services, trending musical artists, and sports. Overall, the report provides valuable insights into the current state of identity exposure and the potential risks faced by organizations and consumers.
