Research just released claims that malicious intent is behind 62% of data losses, with insider breaches accounting for 33% and hackers accounting for 29% of noted incidents. The study of more than 1100 US and international IT security professionals also found that the remaining data losses were accidental in nature. According to Imperva, the IT…
Category: Commentaries and Analyses
Data breaches remain high
Jeff Blumenthal reviews some stats on breach reports with a local eye to Pennsylvania and New Jersey in this news story. A snippet: Sasha Romanosky, a doctoral student at Carnegie Mellon University whose research revolves around data breaches, said Pennsylvania and New Jersey are slightly above the national average for rate of reported identity theft,…
Social Engineering Report Shows Corporate America At Risk
Kelly Jackson Higgins writes: Among the unsettling results in the final report, released today, from the Social Engineering Capture The Flag contest held in August at Defcon: Security companies were just as susceptible to social engineering as nontechnology firms, Internet Explorer 6 was still in use at 65 percent of the Fortune 500 companies targeted…
Are colleges and universities at greater risk of data breaches?
John Cox discusses the recent report by Application Security, mentioned previously on this site. A database security vendor says colleges and universities need to do more to secure their databases against break-ins. Application Security, which uses the name AppSec, reviewed data breaches in higher education, drawing from a variety of published sources. The company, based…
12 reasons why we’re losing the identity theft battle (and why you should care)
Neal O’Farrell, Consumer Security Adviser for Intersections Inc, writes: 1. Zero Liability has made consumers feel they have nothing to lose. The notion of zero liability came from a blend of federal law (the FACT Act or FACTA) and marketing savvy by financial institutions, to shift losses to identity theft from consumers and victims to…
The Securosis 2010 Data Security Survey
Over the summer we initiated what turned out to be a pretty darn big data security survey. The primary goal of the survey was to assess what data security controls people find most effective, as well as get a better understanding of how they are using the controls, what’s driving adoption, and a bit on…