The Verizon report is out. You can download it here. More after I have a chance to read it and round up some analyses/comments. Right off the top, I can see that their findings are more consistent (but somewhat more extreme, perhaps) than what we find in DataLossDB.org, and significantly different than what Ponemon and…
Category: Commentaries and Analyses
Good news for breached entities: it won’t cost you as much and customers are less likely to leave – Ponemon study
The new Ponemon study, 2011 Cost of a Data Breach Study has some interesting findings. From the executive summary: The cost of a data breach declined. For the first time in seven years, both the organizational cost of data breach and the cost per lost or stolen record have declined. The organizational cost has declined from…
Theft of location info: Revision of law necessary to protect privacy
From an editorial in The Korea Times: Subcontractors of two mobile carriers sold location information of 200,000 customers. The theft shows a deep hole in the protection of location information, and is a grave infringement of the privacy of subscribers. Police arrested engineers working for SK Telecom and KT for stealing and selling location information,…
A horrific privacy breach averted, but why did Anonymous remain silent? (UPDATED)
I couldn’t fall asleep last night. It’s not often that a data breach worries me, but what I read online had concerned me. According to a hacker calling himself @PabloEscobarSec, he had hacked the British Pregnancy Advisory Service (BPAS), and intended to leak the names of all of the women who had used the service….
Leakage from website poses threat to Chinese netizens
Xiang Yang provides some interesting statistics. Translated by e Xin, People’s Daily Online reports: … By the end of 2011, a total of 26 website were suspected to have users’ information leaked, involving 278 million accounts and passwords, according to the statistics from the National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT/CC)….
Data Breach Case Research Paper Sheds Light
Kristin J. Mathews writes: In a draft research paper titled “Empirical Analysis of Data Breach Litigation”, three prominent scholars have collected and analyzed a sample of over 230 federal data breach lawsuits in order to deduce just what makes them tick. Romanosky, Hoffman and Acquisti examined, for example, what factual and legal characteristics made a company more likely to be…