OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: [Dataloss] Data Breach report

From: Adam Shostack (adamhomeport.org)
Date: Sun Jan 11 2009 - 16:40:27 CST

I don't need to guess. 6 in 7.

http://www.emergentchaos.com/archives/2008/05/does_the_uk_need_a_breach.html

Ok, that is a very small sample size. Others with interesting data
sets have reported very different numbers in private correspondance.

Adam

On Sun, Jan 11, 2009 at 02:42:01PM -0500, Michael Hill, CITRMS wrote:
| 656 security breaches reported last year. Anyone want to guess how many
| went unreported?
|
| Another 656?
| 3 times more?
| 10 times more?
|
|
|
|
|
| Michael Hill, MCSD
| Certified Identity Theft Risk Management Specialist
| www.idtheft101.net
| 404-216-3751
|
| INFORMATION SECURITY | RISK MANAGEMENT | COMPLIANCE | FORENSICS | TRAINING
|
|
| "If You Think You're Not At Risk, Think Again!"
|
|
|
|
| ----- Original Message -----
| From: "Henry Brown" <hbrownknology.net>
| To: <datalossdatalossdb.org>
| Sent: Sunday, January 11, 2009 8:36 AM
| Subject: [Dataloss] Data Breach report
|
|
| >A news story with a "government" slant
| >
| > http://www.nextgov.com/nextgov/ng_20090107_5089.php
| >
| >
| > Governments accounted for 1 out of 5 breaches that exposed private data
| >
| >
| > The number of security breaches that exposed personal identifiable
| > information in government systems in 2008 was far below what the private
| > sector reported, according to a series of reports released by a consumer
| > protection organization on Tuesday.
| >
| > Of the 656 security breaches reported last year, 16.8 percent occurred
| > in systems operated by state, local and federal governments, including
| > military networks, according to a compilation of reports released by the
| > Identity Theft Resource Center.
| > http://www.idtheftcenter.org/BreachPDF/ITRC_Breach_Stats_Report_2008_final.pdf
| >
| > The number of breaches reported in 2008 increased 47 percent compared
| > with 2007. But the percentage of incidents the government reported
| > decreased in 2008, dropping from 24.5 percent of the total breaches
| > reported.
| >
| > Companies in the financial and credit market accounted for 11.9 percent
| > of the breaches while organizations in the health care sector were
| > responsible for 14.8 percent. Businesses in general accounted for 36.6
| > percent of infiltrations, or 240 incidents, and educational institutions
| > accounted for 20 percent.
| >
| > _______________________________________________
| > Dataloss Mailing List (datalossdatalossdb.org)
| >
| > Tenable Network Security offers data leakage and compliance monitoring
| > solutions for large and small networks. Scan your network and monitor your
| > traffic to find the data needing protection before it leaks out!
| > http://www.tenablesecurity.com/products/compliance.shtml
| >
|
| _______________________________________________
| Dataloss Mailing List (datalossdatalossdb.org)
|
| Tenable Network Security offers data leakage and compliance monitoring
| solutions for large and small networks. Scan your network and monitor your
| traffic to find the data needing protection before it leaks out!
| http://www.tenablesecurity.com/products/compliance.shtml

_______________________________________________
Dataloss Mailing List (datalossdatalossdb.org)

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml