Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

10/3/2017
11:28 AM
50%
50%

Less Than Half of Consumers Take Protective Steps Post-Breach

New data on consumer behavior and identity theft shows most don't protect themselves after their personal data is compromised.

Fewer than 50% of consumers take basic protective steps after their personal information is stolen, according to a report from CyberScout and the Identity Resource Center (ITRC). Most people don't know how to resolve the problem of identity theft and are left vulnerable, the report found.

The study polled consumers who had experienced a data breach that exposed their personal data, and explored the different ways consumers reacted to the incident. Eighty percent of the 317 respondents understood a data breach heightened their risk for identity theft and financial harm, but 49.3% were confused about the right steps to take following a breach notification.

More than one-third (38%) say they would contact their bank for support. However, experts note, banks are only obligated to help with bank account or credit card fraud, and not fraud related to Social Security Numbers or other sensitive data. Only 3.8% would turn to their insurance company for help, despite policies covering identity theft and monitoring, and 31.5% would not know where to turn.

The lack of direction is primarily driving feelings of frustration, anger, and anxiety, report 77% of consumers.

Forty-one percent say they would never again do business with a breached company - a problem for organizations with a history of breaches. If customers exposed by the Equifax breach share the same feelings of anxiety and frustration as those in the survey, researchers explain, millions will be vulnerable to identity theft and financial damage.

Read details about the findings here.

Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
10/3/2017 | 5:34:55 PM
A form of security by obscurity?
I suppose part of the attitude is that "there's safety in numbers."

Out of 143 million compromised in the Equifax breach, what are the chances that ID theft gets committed against YOU?

One way of looking at it, I suppose. Not the safest, but I can't say that it doesn't have a certain statistical logic.
COVID-19: Latest Security News & Commentary
Dark Reading Staff 9/21/2020
Hacking Yourself: Marie Moe and Pacemaker Security
Gary McGraw Ph.D., Co-founder Berryville Institute of Machine Learning,  9/21/2020
Startup Aims to Map and Track All the IT and Security Things
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/22/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-25595
PUBLISHED: 2020-09-23
An issue was discovered in Xen through 4.14.x. The PCI passthrough code improperly uses register data. Code paths in Xen's MSI handling have been identified that act on unsanitized values read back from device hardware registers. While devices strictly compliant with PCI specifications shouldn't be ...
CVE-2020-5783
PUBLISHED: 2020-09-23
In IgniteNet HeliOS GLinq v2.2.1 r2961, the login functionality does not contain any CSRF protection mechanisms.
CVE-2020-11031
PUBLISHED: 2020-09-23
In GLPI before version 9.5.0, the encryption algorithm used is insecure. The security of the data encrypted relies on the password used, if a user sets a weak/predictable password, an attacker could decrypt data. This is fixed in version 9.5.0 by using a more secure encryption library. The library c...
CVE-2020-5781
PUBLISHED: 2020-09-23
In IgniteNet HeliOS GLinq v2.2.1 r2961, the langSelection parameter is stored in the luci configuration file (/etc/config/luci) by the authenticator.htmlauth function. When modified with arbitrary javascript, this causes a denial-of-service condition for all other users.
CVE-2020-5782
PUBLISHED: 2020-09-23
In IgniteNet HeliOS GLinq v2.2.1 r2961, if a user logs in and sets the ‘wan_type’ parameter, the wan interface for the device will become unreachable, which results in a denial of service condition for devices dependent on this connection.