The data is showing amazing variance year-over-year: the number of lost records has plummeted, but the number of breaches is growing. Attacks on small to medium businesses are rising, and it appears criminals are focusing their efforts on quality rather than quantity of data. Cyber crime has become a serious business, and criminals are following the money and paths of least resistance.
I attended the Verizon Business 2010 Data Breach Report session by Brian Sartin at RSA2011 and some of his key insights were:
- Crimes are becoming commoditized and repeated
- The number of records taken by criminals has dropped year-over-year since 2008 -- I am seeing the records that ARE taken are more targeted and valuable!
- In 2010, internal agents involved in breaches jumped significantly -- including recently-terminated employees
- 90% of cases involved data stored in places management were unaware of (e.g., unmanaged servers) -- speaks to the need for DLP discovery and endpoint
I think most of these trends have continued in 2011, so I'm curious to see what the DBIR has to say.