The Verizon 2013 Data Breach Investigations Report is out and per the report's introduction, "perhaps more so than any other year, the large scale and diverse nature of data breaches and other network attacks took center stage" in 2012. This year's global study conducted by the Verizon RISK team is in cooperation with eighteen organizations around the world contributing to the data and analysis. You can view the Executive Summary and their webinar for freeonline.
A quick snapshot of the data:
- 47,000(+) reported security incidents, 621 confirmed data breaches and at least 44 million compromised records in 2012 (the largest amount the Verizon Report has ever covered in any single year)
- 38% of breaches impacted larger organizations and 37% of breaches affected financial organizations (Both percentages show a 10% or greater increase from last year's report)
- 76% of network intrusions exploited weak or stolen credentials
- 52% of breaches used some form of hacking
- 78% of initial intrusions rated as low difficulty
- 66% of breaches took months or more to discover
- 69% of breaches were discovered by external parties
As the above data reveals, over half of breaches take months to discover and are uncovered by someone outside the victim's organization. If your company handles credit cards, you could be at risk for data breach. Each day there are criminals attempting to access the cardholder data in those monetary transactions. Is your organization compliant with PCI Data Security Standards (DSS)? Our team of professionals understands how others are meeting PCI DSS requirements and can offer recommendations to help you address non-compliant areas.
Have questions? Contact Karen Cassella (firstname.lastname@example.org), Executive Vice President, CBIZ Security & Advisory Services at (901) 685.5595 or email email@example.com. You can also see Karen speak on data breach at our CFO/Controller Conference, May 14th. Click here for more info.