Endpoint
12/27/2013
07:18 AM
Tim Wilson
Tim Wilson
Quick Hits
50%
50%

Survey: U.S. Citizens More Worried About ID Theft Than Privacy

Despite NSA scare, U.S. voters are five times more concerned about hacking than tracking, CCIA study says

Despite recent controversy over surveillance by the NSA, U.S. voters are still much more worried about identity theft than online tracking of their activities, a new study says.

According to a poll of 1,000 U.S. voters conducted by Benenson Strategy Group on behalf of the Computer & Communications Industry Association (CCIA), the vast majority of users are more worried about security than privacy.

"Overall, 75% are worried about their personal information being stolen by hackers and 54% are worried about their browsing history being tracked for targeted advertising," the study says.

"However, when voters are forced to choose which one is more important to them, their focus is almost unanimously (87%) directed on the need to protect their personal information from those who would use the info to harm them," the study continues. "Even those worried about tracking (the 54%) are more worried about hacking by an overwhelming majority (84% to 8%)."

Most voters are aware of online risks, according to the poll. Fifty-five percent say they or someone they know has experienced an email account breach, and 62% report receiving a suspicious email from someone who likely had experienced an account hack. Half of the voters polled say they or someone they know has experienced a breach of their financial accounts online.

Most voters are also taking steps to protect themselves, according to the study. Seventy-three percent have chosen to not allow a service to remember their credit card information, 65% have chosen to set their browser to disable cookies, 53% have chosen to block an app from accessing their location information.

Some 68% of respondents have adjusted the privacy settings for their online accounts, the CCIA study says. More than three quarters (76%) of survey respondents indicated they have used a different password for each service they use, and 57% have signed up for a two-step sign-in process. Eighty-three percent have required a password to unlock their devices at some point.

Have a comment on this story? Please click "Add a Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message. Tim Wilson is Editor in Chief and co-founder of Dark Reading.com, UBM Tech's online community for information security professionals. He is responsible for managing the site, assigning and editing content, and writing breaking news stories. Wilson has been recognized as one ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
moarsauce123
50%
50%
moarsauce123,
User Rank: Apprentice
12/28/2013 | 5:54:12 PM
re: Survey: U.S. Citizens More Worried About ID Theft Than Privacy
Hacking and identity theft are on the same level of evilness. The government cannot be trusted any more than folks who tinker around in POS systems to get credit card information. The damage done might manifest itself in different ways, but in either case it is to the detriment of the individual. And who knows how well the federal agencies safeguard their data. So first the tracking then the hacking. a data dump from a few NSA servers with personal information will be worth quite a bit on the black market.
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-8142
Published: 2014-12-20
Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.36, 5.5.x before 5.5.20, and 5.6.x before 5.6.4 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate keys w...

CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2013-7401
Published: 2014-12-19
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.