Verizon released a very interesting Data Breach report that analyzes over 500 forensic reports on their system over a number of years. It is great work by Verizon to gather this data and to publish it. Of course a consultant I go into lots of companies where they could learn a lot just by being more open and talking through issues with peers in other companies. Would be great to see other companies follow Verizon's lead.
Who is behind data breaches?
73% resulted from external sources
18% were caused by insiders
39% implicated business partners
30% involved multiple parties
How do breaches occur?
62% were attributed to a significant error
59% resulted from hacking and intrusions
31% incorporated malicious code
22% exploited a vulnerability
15% were due to physical threats
What commonalities exist?
66% involved data the victim did not know was on the system
75% of breaches were not discovered by the victim
83% of attacks were not highly difficult
85% of breaches were the result of opportunistic attacks
87% were considered avoidable through reasonable controls