News

Verizon reports exponential increase in data breaches

Criminals carried out more but smaller data thefts last year than in previous years, indicating a shift toward simpler exploits that run lower risk of punishment, according to Verizon’s latest data breach report.

In 2010 the number of breaches skyrocketed to 760 from 141 the year before, according to the 2011 Verizon Data Breach Investigation Report.  At the same time the number of actual records compromised by the breaches plummeted from 144 million in 2009 to 4 million in 2010. On average, then, in 2009 the number of records stolen per breach was about 1.02 million. For 2010 that number was 5,263.

“The type of data being sought by criminals shifted from payment card numbers to intellectual property, information about business processes and deals being made between businesses, ” said David Ostertag, global investigations manager for Verizon. “With intellectual property they may get one record but it will have a much higher value than one payment card record,” he said.

In cases where payment card information was stolen, the number of records taken per breach was much less, indicating that criminals are trying to minimise the attention they draw, he said. “There’s less chance of being caught because fewer resources are being applied to catch them,” he said.

That may already be changing, though, with early results from 2011 indicating a surge in high-volume data breaches. The motivation may be that stockpiles of stolen card data have been depleted over the past year and more are needed to replenish them. “Supply and demand has a lot to do with it,” he said. “The bad guys need a new supply.”

Also anecdotally, there seems to be a recent uptick in unauthorised peer-to-peer traffic on networks, Ostertag says, which could be criminals doing research and development on ways to send data out once it has been compromised. “They’re better at getting in, but not at exfiltrating the data,” he said.

“Threats from outside businesses has also jumped dramatically from 70% to 92%, which may be due to commoditised attack tools that are simpler to use and therefore used more often,” added Ostertag. Hospitality, retail and financial services industries accounted for 87% of all the investigated data breaches.

Financial institutions in previous years accounted for 90% or more of compromised records, but that fell dramatically in 2010 to 35%. The reason is some breaches in past years that involved millions of records were from financial institutions. Also, criminals may be focusing more on other thefts than credit card numbers. These include theft of intellectual property, authentication data, and turning machines into bots to serve botnets, the report says.

“One deceptive result is the 17% of attacks involving insiders. That is a drop from 48% in 2009, but the actual number of insider breaches remains about the same. So the threat to businesses from insiders has stayed relatively constant; it’s just the total number of breaches that has dramatically increased to skew the percentage,” he pointed out. “Mobile devices have not been seen compromising systems,but they have been used in compromising data,” he concluded.

Previous ArticleNext Article

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

GET TAHAWULTECH.COM IN YOUR INBOX

The free newsletter covering the top industry headlines