Attacks/Breaches
9/16/2016
03:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Centrifys Survey Finds Consumers More Concerned with Financial Data Getting Hacked than Private Information about Their Families Being Exposed

Survey also reveals consumers more likely to hear about data breaches from the news or social media-not from companies holding their data.

Santa Clara, CA ― September 13, 2016 — Centrify, the leader in securing enterprise identities against cyberthreats, today released findings from its 2016 Consumer Trust research study that examined consumer attitudes toward hacking, including what information people most fear being hacked, how often consumers change their passwords and how aware they are when a hack does occur.

The online study, commissioned by Centrify, found that people are most fearful of their credit cards or bank statements being hacked, with 78 percent of Americans and Germans ranking it a top concern. That number is even higher in the U.K, where 85 percent of residents rank credit card and bank data as their biggest hack concern.

The study, which surveyed 2,400 people across the U.S., U.K. and Germany, also found that consumers are very concerned about their financial investment information falling prey to hackers, with 58 percent in the U.S., 56 percent in the U.K. and 43 percent in Germany citing it as a top concern. This is followed by health and medical records, with 46 percent in the U.S., 45 percent in the U.K. and 48 percent in Germany saying they are most fearful of this information being hacked. By contrast, consumers are less worried about their family information falling into the hands of hackers, with just 44 percent in the U.S., 41 percent in the U.K. and 43 percent in Germany citing this as a top concern.

Hacks related to criminal history, web browsing history and dating profile information are least concerning for consumers, according to the survey. This is likely because a significant percentage of people do not find this information embarrassing.

The study also found that when personal information is hacked, consumers do not always hear directly from the targeted business or organization that holds their data. At least half of respondents in each country who were victims of a hack said they heard about the hack via the news. Younger adults are more likely to hear about such hacks from social media.

Additionally, the survey revealed that, despite the growing media spotlight on high profile hacks, most consumers have poor password habits and do not take adequate precaution to protect their personal information. Just one-quarter of Americans change their passwords at least once a month (more than in any other country). One-quarter of Americans and one-third of consumers in the UK and Germany change their passwords once a year, less or never.

This is striking given that consumers are increasingly vulnerable to attacks. Over half of Americas and two-thirds in the U.K. do most or all of their banking online, and about one-third do most or all of their shopping online, according to the study.

The good news is that many consumers are eager to improve their online habits. The study found that frequent password changes are more common among those who have had their personal info hacked in the past and those who tend to do more online shopping.

What’s more, survey respondents indicated they are willing to invest time in completing security tasks if it makes them safer. More than half of all Germans (52 percent) expressed a willingness to spend at least 10 minutes on security measures, followed by 46 percent in the U.S. and 30 percent in the UK.

Half or more selected a fingerprint ID as one of the top two security measures they would be comfortable using. The alphanumeric password, the four-digit password and voice ID follow. The study revealed that people are much less comfortable with the graphic password, GPS locator and the ability to erase data remotely.

“Consumers can no longer afford to put their data at risk,” said Tom Kemp, CEO of Centrify. “To protect themselves and their personal information, consumers need to follow a number of precautionary steps, such as monitoring accounts and frequently changing passwords. They should also look to transact with businesses that provide next-level security such as multi-factor authentication (MFA). MFA adds a layer of security that protects against the leading cause of a data breach—namely, weak passwords.”

About Centrify
Centrify is the leader in securing enterprise identities against cyberthreats that target today’s hybrid IT environment of cloud, mobile and on-premises. The Centrify Identity Platform protects against the leading point of attack used in data breaches ― compromised credentials — by securing an enterprise’s internal and external users as well as its privileged accounts. Centrify delivers stronger security, continuous compliance and enhanced user productivity through single sign-on, multi-factor authentication, mobile and Mac management, privileged access security and session monitoring. Centrify is trusted by over 5000 customers, including more than half of the Fortune 50.

###

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
5 Reasons the Cybersecurity Labor Shortfall Won't End Soon
Steve Morgan, Founder & CEO, Cybersecurity Ventures,  12/11/2017
BlueBorne Attack Highlights Flaws in Linux, IoT Security
Kelly Sheridan, Associate Editor, Dark Reading,  12/14/2017
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
The Year in Security: 2017
A look at the biggest news stories (so far) of 2017 that shaped the cybersecurity landscape -- from Russian hacking, ransomware's coming-out party, and voting machine vulnerabilities to the massive data breach of credit-monitoring firm Equifax.
Flash Poll
The State of Ransomware
The State of Ransomware
Ransomware has become one of the most prevalent new cybersecurity threats faced by today's enterprises. This new report from Dark Reading includes feedback from IT and IT security professionals about their organization's ransomware experiences, defense plans, and malware challenges. Find out what they had to say!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.