informa
/
Attacks/Breaches
News

More Data Breached In 2008 Than In Previous Four Years Combined

Surprisingly, 99% of breached records were accessed through servers and applications, rather than desktop computers, notebooks, mobile phones, or portable media.
As was the case in Verizon's previous data breach report, the breaches investigated were discovered by third parties most of the time (69%). This suggests organizations need better insight into and control of the data they oversee.

Surprisingly, 99% of breached records were accessed through servers and applications, rather than desktop computers, notebooks, mobile phones, or portable media.

It's also worth noting that 81% of affected organizations subject to the Payment Card Industry Data Security Standard (PCI DSS) had been identified as noncompliant before being breached.

There are a lot of lessons that can be learned from the report. But the major one is that basic security practices consistently applied can help prevent most data breach incidents.

More specifically, Verizon recommends changing default credentials, avoiding shared credentials, user account reviews, application testing and code reviews, smarter patch management strategies, employee termination procedures, application logging and monitoring, and agreeing on what represents suspicious or anomalous network behavior.


Attend a Webcast on why bad security breaches keep happening to good organizations. It happens Wednesday, April 15. Find out more and register.

Recommended Reading:
Editors' Choice
Kirsten Powell, Senior Manager for Security & Risk Management at Adobe
Joshua Goldfarb, Director of Product Management at F5