Wednesday, January 27, 2021
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Articles
    • See All Articles
    • NEW: COVID-Related
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Leadership and Career
  • Vendor News
  • Jobs
  • Events
    • Webinars & Events
    • Submit an Event
  • Downloads
    • eBooks
    • Whitepapers
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home GRC Vendor News

No One is Immune to Breaches, as 183 Million Accounts Compromised in Q3 2014

by Corporate Compliance Insights
November 21, 2014
in GRC Vendor News
No One is Immune to Breaches, as 183 Million Accounts Compromised in Q3 2014

Large Scale Attacks Against Financial Firms, Retail Companies, and Consumers’ Personal Identities and Online Accounts Are Dominant Trends

BALTIMORE – November 18, 2014 ─ Consumers experienced a wide range of data privacy and security threats in the third quarter of 2014 as hackers successfully conducted large-scale attacks against financial services and retail companies as well as consumers’ personal online accounts and identities.  These were just some of the findings from the third quarter 2014 Breach Level Index (BLI) released today by SafeNet, Inc., a global leader in data protection solutions.

Between July and September of this year, there were 320 breaches reported worldwide, an increase of nearly 25 percent compared to the same period last year, and more than 183 million customer accounts and data records containing personal or financial information were either stolen or lost.

Individuals also felt the data privacy pinch with breaches occurring across three major consumer activities: their banking, shopping and online identities.  Financial services (42 percent) and retail (31 percent) took the top spots among all industries in terms of the number of compromised customer accounts and data records.  These were followed by breaches involving technology and personal online accounts (20 percent) such as email, gaming and other cloud-based services.  In addition, identity theft also took the top spot among the types of data breaches, accounting for 46 percent of the total.

“Consumers’ heads must be spinning as criminals are easily getting access to their credit card, banking and personal information at every turn,” said Tsion Gonen, Chief Strategy Officer at SafeNet.  “Companies should assume a breach and plan accordingly. They need to implement technologies and programs that minimize the impact of a breach on top of the traditional prevention. As it is, these technologies are just not being used by to the fullest extent by either consumers or companies.”

Q3 Highlights

By Top Three Industries Impacted:

  1. Financial Services Industry
    • 77,605,972 data records stolen, or 42 percent of all data records stolen
    • 33 data breach incidents, or 11 percent of all data breach incidents
  1. Retail Industry
    • 57,216,390 data records stolen, or 31 percent of all data records stolen
    • 47 data breach incidents, or 15 percent of all data breach incidents
  1. Technology/Social Media/Other Online Services
    • 36,415,080 data records stolen, or 20 percent of all data records stolen
    • 38 data breach incidents, or 11 percent of all data breach incidents

“The retail industry has been consistently hit hard with breaches. Criminals want to have access to credit card and banking information for financial gain or to obtain personal information to use for identity theft. Customers have been very tolerant of these breaches, because they feel that this access can be corrected by someone else, like a bank replacing a stolen credit card. However, this new surge of online identity breaches is much more serious for individuals. Once your personal photos or private messages have been accessed and leaked online, there’s no fixing that. Those items will be forever in cyberspace for your future employers, friends and family to access,” continued Gonen. “While it’s not surprising that sophisticated cybercriminals are continuing to attempt these breaches, what is surprising is that again only 1 percent of breached records had been encrypted. Now is the time for customers to demand that their personal information be encrypted by companies.”

By Data Breach Type:

  • Account Access: 86,393,338 records, or 48 percent, and 39 data breach incidents, or 12 percent of all incidents
  • Financial Access: 58,453,288 records, or 33 percent, and 52 data breach incidents, or 16 percent of all incidents
  • Identity Theft: 30,717,154 records, or 17 percent, and 147 incidents, or 46 percent of all incidents
  • Nuisance: 3,195,285 records, or 2 percent, and 46 incidents, or 15 percent of all incidents
  • Existential Data: 116,220 records, or less than 1 percent, and 36 data breach incidents, or 11 percent of all incidents

By Source:

  • Malicious Outsiders: 173,835,350 data records stolen, or 97 percent, and 172 data breach incidents, or 54 percent
  • Accidental Loss: 2,795,235 data records lost, or 1 percent, and 77 data breach incidents, or 24 percent
  • State Sponsored: 2,075,584 data records stolen, or 1 percent, and 24 data breach incidents, or 7 percent
  • Hacktivists: 117,105 data records stolen, or less than 1 percent, and eight data breach incidents, or 3 percent
  • Malicious Insiders: 52,011 data records stolen, or less than 1 percent, and 38 data breach incidents, or 12 percent

By Geography:

The United States reported more data breaches than any other country with 199 incidents (or 62 percent), followed by the United Kingdom with 33 incidents (or 10 percent), Canada with 14 incidents (or 4 percent), Australia with 11 incidents (or 3 percent) and Israel with 10 incidents (or 3 percent).

  • North America: 215 incidents, or 66 percent
  • South America: two incidents, or 1 percent
  • Europe: 51 incidents, or 16 percent
  • Middle East & Africa: 21 incidents, or 7 percent
  • Asia-Pacific: 31 incidents, or 10 percent

About the Breach Level Index

The BLI provides a centralized, global database of data breaches and calculates their severity based on multiple dimensions, including the type of data and the number of records stolen, the source of the breach and whether or not the data was encrypted. By assigning a severity score to each breach, the BLI provides a comparative list of breaches, distinguishing nuisances from truly impactful mega breaches. Information populating the BLI database is based on publicly available breach disclosure information.

SafeNet first collaborated with industry analyst firm IT-Harvest in 2013 to develop the logarithmic formula used to determine breach severity. When calculating the severity of data breaches, the BLI factors in multiple inputs, including data type, number of records stolen, breach source and if the high-value data remained secure after the breach was discovered. These inputs are then processed through a proprietary algorithm that produces an index number, with 1 being least severe and 10 being most severe.

Resources

  • Breach Level Index Executive Summary:
  • Breach Level Index website: www.breachlevelindex.com
  • Secure the Breach website: www.securethebreach.com
  • Secure the Breach Manifesto: www2.safenet-inc.com/securethebreach/downloads/secure_the_breach_manifesto.pdf

About SafeNet, Inc.

Founded in 1983, SafeNet, Inc. is one of the largest information security companies in the world and is trusted to protect the most sensitive data for market-leading organizations around the globe.  SafeNet’s data-centric approach focuses on the protection of high-value information throughout its lifecycle, from the data center to the cloud.  More than 25,000 customers across commercial enterprises and government agencies trust SafeNet to protect and control access to sensitive data, manage risk, ensure compliance and secure virtual and cloud environments. Learn more about SafeNet on Twitter,LinkedIn, Facebook, YouTube and Google+.

Note: Information in the Breach Level Index is collected from public sources. SafeNet provides this information “as-is,” makes no representation or guaranties regarding this information, and is not liable for any use. A secure breach is categorized as a breach in which strong encryption, key management and authentication solutions protect the data from being accessed during an attack.


Previous Post

SEC’s Office of the Whistleblower Releases Annual Report

Next Post

Lessons on the Role of Leadership in Corporate Ethics and Compliance from FIFA

Corporate Compliance Insights

Related Posts

abstract handshake on grey background

Kroll Launches Data Privacy and Digital Trust Solutions Ahead of Data Privacy Day

January 21, 2021
red stick figure standing outside circle of blue stick figures

ICA Survey: 4 in 10 Compliance Professionals Experience Discrimination in the Workplace

January 21, 2021
business team interrogate corrupt businessman, money falls from his pockets

QuantaVerse Launches New Financial Crime Investigation Report

January 20, 2021
yellow job search box speech bubble

Fortune 500 Job Descriptions Are Still Biased Toward Men

January 12, 2021
Next Post
Lessons on the Role of Leadership in Corporate Ethics and Compliance from FIFA

Lessons on the Role of Leadership in Corporate Ethics and Compliance from FIFA

Access realtime data
Dynamic Risk Assessments with Workiva

Special Coverage

Special COVID page graphic

Jump to a Topic:

anti-corruption anti-money laundering/AML Artificial Intelligence/A.I. automation banks board of directors board risk oversight bribery CCPA/California Consumer Privacy Act Cloud Compliance communications management Coronavirus/COVID-19 corporate culture crisis management cyber crime cyber risk data analytics data breach data governance decision-making diversity DOJ due diligence fcpa enforcement actions financial crime GDPR GRC HIPAA information security internal audit KYC/know your customer machine learning monitoring regtech reputation risk risk assessment Sanctions SEC social media risk supply chain technology third party risk management tone at the top training whistleblowing
No Result
View All Result

Privacy Policy

Follow Us

  • Facebook
  • Twitter
  • LinkedIn
  • RSS Feed

Category

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Whitepapers

© 2019 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
  • Articles
  • Vendor News
  • Podcasts
  • Videos
  • Whitepapers
  • eBooks
  • Events
  • Jobs
  • Subscribe

© 2019 Corporate Compliance Insights