A new report examining data breaches in the first quarter of 2014 reveals that while the number of major data loss incidents is nearly the same as during the first quarter of 2013, the number of record compromised has jumped by 46% year over year, with an estimated 176 million records exposed.
“It’s difficult to say whether security is deteriorating, bad actors are getting better or some combination of both.” said Inga Goddijn of Risk Based Security. “What we do know is that there have been eight events in the past six months that have involved the compromise of at least 10 million records per event and the trend is continuing with the most recent revelations at eBay.”
The report also showed that while more than three-quarters of the data loss events were perpetrated by malicious hackers, those incidents only accounted for less than fifteen percent of records compromised.
Conversely, while fraud accounted for nearly sixty percent of exposed records, it only made up less than two percent of reported incidents.
Other key findings in the report include:
- There were 669 incidents reported during the first three months of 2014 exposing 176 million records
- A single incident of insider Fraud involving Korea Credit Bureau exposed 104 million credit cards with expiration dates, 20 million names, social security numbers and phone numbers.
- The Business sector accounted for 57.5% of reported incidents, followed by Government (15.7%), Unknown (13.0%), Education (7.3%),and Medical (6.4%)
- The Business sector accounted for 98.3% of the number of records exposed
- Breaches involving U.S. entities accounted for 37.1% of the incidents and 29.3% of the exposed records
- 62.9% of the incidents exposed between one and 1000 records
- Six incidents exposed more than one million records
- One Q1 2014 incident has secured a place on the Top 10 All Time Breach List, (Korea Credit Bureau)
“When analyzing the full data set, we can see that 97 organizations that reported a data breach in the first quarter of 2014 had also reported a breach in the past. In addition, three of these organizations had multiple breaches in the first quarter of this year,” Goddijn said.
Read More Here (PDF)…