{"id":1573,"date":"2018-04-17T15:55:48","date_gmt":"2018-04-17T15:55:48","guid":{"rendered":"http:\/\/www.blackopspartners.com\/?p=1573"},"modified":"2018-04-17T15:55:48","modified_gmt":"2018-04-17T15:55:48","slug":"2017-data-breach-level-index","status":"publish","type":"post","link":"https:\/\/blackopspartners.com\/2017-data-breach-level-index\/","title":{"rendered":"2017 Data Breach Level Index"},"content":{"rendered":"<p><strong>Break down of the 2017 Breach Level Index stats found:<\/strong><\/p>\n<ul>\n<li>7,125,940 compromised every day<\/li>\n<li>2,96914 compromised records every hour<\/li>\n<li>4,949 compromised records every minute<\/li>\n<li>82 compromised records every second<\/li>\n<\/ul>\n<p>Last year was a monumental year for data breaches. According to the new Breach Level Index (BLI), in 2017, the number of data records compromised in publicly disclosed data breaches surpassed 2.5 billion, up 88% from 2016. The only year in BLI\u2019s history to surpass this total was 2013. But the world didn\u2019t learn that until 2017 when Verizon Communications confirmed the <a href=\"https:\/\/www.nytimes.com\/2017\/10\/03\/technology\/yahoo-hack-3-billion-users.html\" rel=\"nofollow noopener\" target=\"_blank\">exposure of all three billion Yahoo users\u2019 accounts in a 2013 breach<\/a>.<\/p>\n<p>This delayed revelation raises the following question: what is the reason that companies don\u2019t\u00a0know about or disclose breaches immediately? Some of you may remember Andy Warhol\u2019s 1984 public service announcement \u2013 \u201cIt\u2019s 10pm: Do you know where your children are?\u201d This rings true for data protection\u2013 \u201cIt\u2019s 2018: Do you know where your data is?\u201d It\u2019s impossible to protect something if you don\u2019t know where it is or who has access to it.<\/p>\n<p>In 2017, the number of breaches with an unknown number of compromised records rose to 56%, up 18% from 2016 indicating the possibility that many companies don\u2019t know the real extent of a breach. The risk of a data breach goes beyond exposed sensitive information, data integrity attacks pose a growing threat to companies too. If hackers alter information concerning sales numbers or intellectual property, this data manipulation could have a devastating impact on the company\u2019s business decisions.<\/p>\n<p><strong>The main trends\u00a0<\/strong><strong>from the 2017 report identified<\/strong><strong>:<\/strong><\/p>\n<ul>\n<li><strong>Human error as a major risk\u00a0management and security issue<\/strong>:\u00a0Accidental loss, consisting of improper disposal of records, misconfigured databases and other unintended security issues, caused 1.9 billion records to be exposed. A dramatic 580% increase in the number of compromised records from 2016.<\/li>\n<li><strong>Identity theft is still the number one type of data breach:<\/strong>\u00a0Identity theft was 69% of all data breach incidents. Over 600 million records were impacted resulting in a 73% increase from 2016.<\/li>\n<li><strong>Internal threats are increasing<\/strong>:\u00a0The number of malicious insider incidents decreased slightly. However, the number of records stolen increased to 30 million, a 117% increase from 2016.<\/li>\n<li><strong>What a nuisance<\/strong>:\u00a0The number of records breached in nuisance type attacks increased by 560% from 2016. The Breach Level Index defines a data breach as a nuisance when the compromised data includes basic information such as name, address and\/or phone number. The larger ramification of this type of breach is often unknown, as hackers use this data to orchestrate other attacks.<\/li>\n<li><strong>What industries where hit the hardest<\/strong>: The industries with the highest number data breach incidents were healthcare (27%), financial services (12%), education (11%) and government (11%). In terms of the number of records lost, stolen or compromised, the most targeted sectors were government (18%), financial services (9.1%) and technology (16%).<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<figure id=\"attachment_1574\" aria-describedby=\"caption-attachment-1574\" style=\"width: 650px\" class=\"wp-caption aligncenter\"><a href=\"https:\/\/breachlevelindex.com\" target=\"_blank\" rel=\"noopener noreferrer nofollow\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-1574 size-full\" title=\"Click to see Breach Level Index\" src=\"http:\/\/www.blackopspartners.com\/wp-content\/uploads\/2018\/04\/BLI-image-650x333.png\" alt=\"\" width=\"650\" height=\"333\" \/><\/a><figcaption id=\"caption-attachment-1574\" class=\"wp-caption-text\">Click to view Breach Level Index<\/figcaption><\/figure>\n<p>&nbsp;<\/p>\n<p>One of the most concerning data points the number of encrypted records. Only 1% of the 2.6 billion records lost, stolen or compromised were encrypted, this is down from 3% in 2016. For many companies, it will no longer be a \u201cbest practice\u201d but a necessity to support Europe\u2019s General Data Protection Regulation (<a href=\"https:\/\/www.brighttalk.com\/webcast\/2037\/291945\" rel=\"nofollow noopener\" target=\"_blank\">GDPR<\/a>). This regulation goes into effect on <a href=\"https:\/\/blog.gemalto.com\/security\/2017\/09\/13\/deeper-dive-gdpr-due-diligence-risk-mitigation\/\" rel=\"nofollow noopener\" target=\"_blank\">May 25th of this year<\/a> and considers \u201cprivacy as a fundamental human right and to protect it as such.\u201d Any company dealing with the information of a European citizen will have to comply. In terms of the BLI, we will most likely see the number of publicly disclosed breaches increase with GDPR. This level of reform may also be a catalyst for many other countries to take action regarding the privacy of their citizen\u2019s information. In the United States, a similar discussion is taking place between <a href=\"https:\/\/www.cnet.com\/news\/virginia-warner-facebook-twitter-silicon-valley-needs-to-help-congress-cambridge-analytica\/\" rel=\"nofollow noopener\" target=\"_blank\">Congress and Facebook\u2019s CEO<\/a>, Mark Zuckerberg.<\/p>\n<p>As for 2018, it has already started off with some major <a href=\"https:\/\/blog.gemalto.com\/security\/2018\/04\/03\/saksfifthavenuedatabreach\/\" rel=\"nofollow noopener\" target=\"_blank\">data breaches at Saks Fifth Avenue<\/a>, Lord\u00a0 &amp; Taylor and Under Armour\u2019s MyFitnessPal app. With GDPR, highly publicized data breaches and growing consumer awareness of data privacy, 2018 may prove to be catalyst year in cybersecurity.<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"color: #c7962d;\"><em>Read more at <a style=\"color: #c7962d;\" href=\"https:\/\/blog.gemalto.com\/security\/2018\/04\/13\/data-breach-stats-for-2017-full-year-results-are-in\/\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">Gemalto<\/a>.<\/em><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Break down of the 2017 Breach Level Index stats found: 7,125,940 compromised every day 2,96914 compromised records every hour 4,949 compromised records every minute 82 compromised records every second Last year was a monumental year for data breaches. According to the new Breach Level Index (BLI), in 2017, the number of data records compromised in [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[9],"tags":[],"acf":[],"_links":{"self":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/posts\/1573"}],"collection":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/comments?post=1573"}],"version-history":[{"count":0,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/posts\/1573\/revisions"}],"wp:attachment":[{"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/media?parent=1573"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/categories?post=1573"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blackopspartners.com\/wp-json\/wp\/v2\/tags?post=1573"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}