Risk
4/18/2013
12:51 PM
Connect Directly
RSS
E-Mail
50%
50%
Repost This

Online Privacy Worries Increasing Worldwide

Economist Intelligence Unit study shows that consumers worldwide are increasingly concerned about online data security.

Many private citizens are increasingly worried that businesses and regulators are not doing enough to protect the safety of their data online.

Only 26% of those surveyed feel that businesses are sufficiently transparent in how they use personal data, while a definite majority -- 75% -- describe regulation preventing misuse of such information as "weak," according to a new global study by London-based Intelligence Unit of The Economist magazine.

While 34% of respondents told researchers they are more willing to share basic personal information online now than they were three years ago, a full 90% report they are concerned that such information might be hacked and used to steal their money.

Meanwhile, 66% of respondents report that they sometimes reject products or services because of concerns about the security of their personal data. Moreover, very few consumers are confident their data is safe in the hands of social networks and online retailers.

[ Where do you draw the line when it comes to privacy at work? Read Monitoring Vs. Spying: Are Employers Going Too Far? ]

The study's findings have significant implications for how businesses collect and use consumer data, according to its authors. Editorial director Denis McCauley said, "Companies that earn the right to use consumer data, and do so fairly, could gain a significant competitive edge in the long-term. Building consumer relationships based on trust will help companies gain access to more personal data, and help them to outperform competitors."

The study also draws out some intriguing differences between users in the U.S. and Europe on personal data privacy concerns. For example, while users in both geographies have "similar levels of unease," U.S. users are more reluctant to share information, with 38% saying they're less likely to share personal data now than they were three years ago, compared to just 20% of Europeans. Accordingly, Europeans are more frequent online shoppers, with 22% shopping online at least once a week compared to just 5% of U.S. respondents.

Conducted in January and February 2013, the study surveyed 758 adult Internet users, the vast majority of whom use the Internet daily. Of this sample, 32% were based in Western Europe, 30% in the Asia-Pacific region, 20% in North America and the remainder from Latin America, the Middle East, Africa and Eastern Europe. The group also conducted a number of in-depth interviews with experts and leaders from business, government and NGOs.

The research was commissioned by data breach solutions vendor Beazley.

Easily overlooked vulnerabilities could put your data and business at risk. Also in the new, all-digital 10 Web Threats special issue of Dark Reading: How hackers compromised an iOS developers' website to exploit Java plug-in vulnerabilities and attack Apple, Facebook, Microsoft and Twitter. (Free with registration.)

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Ulf Mattsson
50%
50%
Ulf Mattsson,
User Rank: Apprentice
4/19/2013 | 6:11:58 PM
re: Online Privacy Worries Increasing Worldwide
I agree about the "intriguing differences between users in the U.S. and Europe on personal data privacy concerns. For example, while users in both geographies have "similar levels of unease," U.S. users are more reluctant to share information, with 38% saying they're less likely to share personal data now than they were three years ago".

IBM reported last month in "2012 Trend and Risk Report" that the United States had 46 % of the breaches compared to 8 % in the United Kingdom.

I think that Big Data will add to this picture since it will change the way we are dealing with data. Collecting and processing a huge amount of data is now more feasible and cost effective with Big Data technology.

Many companies are now collecting data files into Big Data environments without fully understand what specific and potentially sensitive information that is hidden in those files. In many cases they do not have the resources to analyze the data content before storing these huge volumes of data.

Many organizations have rushed into Big Data focused solely on ROI, and security is an afterthought. There is also a shortage in Big Data skills and an industry-wide shortage in data security personnel, so many organizations donG«÷t even know they are doing anything wrong from a security perspective.

I think that a crisis is likely to occur very soon:

1. A Big Data security crisis is likely to occur very soon. Few organizations have the ability to deal with it.

2. We have little knowledge about data loss or theft in big data environments.

3. I imagine it is happening today but has not been disclosed to the public.

The good news is that some organizations are proactive and successfully using new approaches to address issues with security and privacy in Big Data environments.

The CEO must understand this risk and the CISO must understand the issues with privacy and security that is associated with this new technology.

Ulf Mattsson, CTO Protegrity
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-3946
Published: 2014-04-24
Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops do not occur for "a small percentage" of the packets, aka Bug ID CSCty73682.

CVE-2012-5723
Published: 2014-04-24
Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.

CVE-2013-6738
Published: 2014-04-24
Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 before 1.2.0.0-CSI-SCALA-IF0003 allows remote attackers to inject arbitrary web script or HTML via an invalid query parameter in a response from an OAuth authorization endpoint.

CVE-2014-0188
Published: 2014-04-24
The openshift-origin-broker in Red Hat OpenShift Enterprise 2.0.5, 1.2.7, and earlier does not properly handle authentication requests from the remote-user auth plugin, which allows remote attackers to bypass authentication and impersonate arbitrary users via the X-Remote-User header in a request to...

CVE-2014-2391
Published: 2014-04-24
The password recovery service in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 makes an improper decision about the sensitivity of a string representing a previously used but currently invalid password, which allows remote attackers to obtain potent...

Best of the Web