August 17th, 2010 by teullThis article comes from a company focused on providing news, training and education in the areas of information security, risk mitigation and fraud. Their source is the Identity Theft Resource Center, a nonprofit that tracks this issue.
There have been 41 data breaches involving financial institutions so far in 2010 – well on the way to surpassing the 62 such incidents in all of 2009.
via bankinfosecurity.com: 41 Banking Breaches So far in 2010
The article also links to an interesting timeline of breaches including type. Even more startling is that many breaches still go unreported, as also reported in the article.
For now, the underreporting of data breaches remains a problem, Foley says. The ITRC is one of several organizations tracking data breaches in the United States. Example: The New York list of data breaches that was made public this spring had more than 200 breaches that had not been reported by any news media, she says. This is a problem not just for the victims of those data breaches, but for other potential victims. “The only thing that underreporting or hiding breaches is doing,” Foley says “is allowing criminals to do the same thing to other businesses without law enforcement becoming aware and investigating them.”
While many organizations leverage forensics after they realize a breach has occurred, they fail to leverage forensic technology proactively to help monitor and protect their systems. viaForensics is a pioneer in applying forensic technology proactively, detecting IOC’s (indicators of compromise) and tracking key forensic information that can be crucial in the investigation of suspected breaches.
I wonder how many more banks and corporations have to become “data breach” headlines before they get serious about security?
