Data breaches rocket, as Verizon report highlights tardy detection #DBIR

News by Dan Raywood

The number of breached records increased from four million to 174 million in a year, with 97 per cent of them described as "avoidable".

The number of breached records increased from four million to 174 million in a year, with 97 per cent of them described as "avoidable".

According to the 2012 Verizon data breach investigations report, 97 per cent of breaches were avoidable without the need for organisations to resort to difficult or expensive countermeasures.

Talking to SC Magazine, Wade Baker, Verizon's director of risk intelligence, said: “Often the attacks have not been the most sophisticated, and very often that is what is successful.”

Baker said that as 174 million records were analysed from 855 data breaches – the second highest detection of data loss recorded by Verizon since it began collecting data in 2004 – this was "way up", but for the figure to be more than 100 million was "not that uncommon".

The report said 58 per cent of data stolen in 2011 was attributed to hacktivism. It also claimed that 98 per cent of attacks were attributable to outsiders – including organised criminals, activist groups, former employees, lone hackers and even organisations sponsored by foreign governments.

Baker said: “It depends on what you are looking at. For example, if you look at intellectual property theft, then the insider threat goes up. I have only ever seen one data theft that involved an insider.”

In this year's report, only four per cent of attacks implicated internal employees.

In terms of how breaches occur, 81 per cent used some form of hacking, 69 per cent involved malware and ten per cent involved physical attacks. Seven per cent employed social engineering tactics and five per cent resulted from privilege misuse.

The report also said that in 54 per cent of cases, the time to discovery of attack was in months, and in 29 per cent was in weeks. Only two per cent of those attacked discovered the breach within a matter of hours. Within larger organisations, 39 per cent discovered in months, 27 per cent in days and 24 per cent in weeks.

In terms of data exfiltration, 38 per cent of respondents were aware of this in minutes, while 25 per cent were aware within days.


Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews

Interview - Everyone has an Achilles heel: The new security paradigm

How can we defend networks now that the perimeter has all but disappeared?
Brought to you in partnership with ExtraHop