Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

10/3/2017
11:28 AM
50%
50%

Less Than Half of Consumers Take Protective Steps Post-Breach

New data on consumer behavior and identity theft shows most don't protect themselves after their personal data is compromised.

Fewer than 50% of consumers take basic protective steps after their personal information is stolen, according to a report from CyberScout and the Identity Resource Center (ITRC). Most people don't know how to resolve the problem of identity theft and are left vulnerable, the report found.

The study polled consumers who had experienced a data breach that exposed their personal data, and explored the different ways consumers reacted to the incident. Eighty percent of the 317 respondents understood a data breach heightened their risk for identity theft and financial harm, but 49.3% were confused about the right steps to take following a breach notification.

More than one-third (38%) say they would contact their bank for support. However, experts note, banks are only obligated to help with bank account or credit card fraud, and not fraud related to Social Security Numbers or other sensitive data. Only 3.8% would turn to their insurance company for help, despite policies covering identity theft and monitoring, and 31.5% would not know where to turn.

The lack of direction is primarily driving feelings of frustration, anger, and anxiety, report 77% of consumers.

Forty-one percent say they would never again do business with a breached company - a problem for organizations with a history of breaches. If customers exposed by the Equifax breach share the same feelings of anxiety and frustration as those in the survey, researchers explain, millions will be vulnerable to identity theft and financial damage.

Read details about the findings here.

Join Dark Reading LIVE for two days of practical cyber defense discussions. Learn from the industry’s most knowledgeable IT security experts. Check out the INsecurity agenda here.

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
10/3/2017 | 5:34:55 PM
A form of security by obscurity?
I suppose part of the attitude is that "there's safety in numbers."

Out of 143 million compromised in the Equifax breach, what are the chances that ID theft gets committed against YOU?

One way of looking at it, I suppose. Not the safest, but I can't say that it doesn't have a certain statistical logic.
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23901
PUBLISHED: 2021-01-25
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML ...
CVE-2020-17532
PUBLISHED: 2021-01-25
When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5
CVE-2020-12512
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
CVE-2020-12513
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
CVE-2020-12514
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd