News Flash

August 04, 2015, Tuesday
  • Sen. Trillanes cites security risk as primary reason why his witnesses in bribery charge vs. 2 CA justices won’t be able to testify. 2 hours ago |
  • Sen. Trillanes says his witnesses in bribery charge vs. CA justices won’t be able to appear before the CA hearing. 2 hours ago |
  • Sen. Trillanes says he will appear before CA hearing on Aug. 14 to explain his bribery charge vs. 2 CA justices. 2 hours ago |
  • Trillanes ordered to appear at CA hearing on Aug. 14 at 2 pm & explain why he shouldn’t be cited for contempt for bribery allegations. 2 hours ago |
  • CA tells Sen. Trillanes to explain his allegation that 2 CA justices got P 25M each in bribes to stop Makati Mayor Binay’s suspension. 2 hours ago |
  • DMCI tells Supreme Court that Torre de Manila is outside the boundary of Rizal Park. 2 hours ago |
  • DMCI tells Supreme Court that it followed all ordinances, rules & guidelines in building Torre de Manila. 2 hours ago |
  • Comelec Commissioner Christian Lim says the poll body can adjust its calendar of activities & extend campaign period when there is election. 2 hours ago |
  • LTFRB sues 2 fixers who had long been loitering in the agency’s vicinity & offering fake franchise to applicants. 2 hours ago |
  • Sen. Chiz Escudero says Comelec should castigate candidates abusing election rules instead of extending the campaign period. 2 hours ago |
  • Sen. Jinggoy Estrada has been experiencing light-headedness and acid reflux. 2 hours ago |
  • Sen. Jinggoy Estrada will undergo medical check up at Cardinal Santos Medical Center from 6 pm Tuesday until Thursday. 2 hours ago |
  • Sandiganbayan grants Sen. Jinggoy Estrada’s request for a medical check up at Cardinal Santos Medical Center in San Juan City. 2 hours ago |
  • PAGASA says frequent heavy rains in the afternoon in Metro Manila are just due to thunderstorms. 2 hours ago |
  • PAGASA says there is no weather disturbance currently affecting Metro Manila. 2 hours ago |
  • Typhoon ‘Soudelor’ is forecast to move west northwest at 20 kph. 2 hours ago |
  • Typhoon ‘Soudelor’ was located 1,770 kilometers east of Luzon at 2 pm on Tuesday. 2 hours ago |
  • Typhoon ‘Soudelor’ outside PAR has gustiness of up to 245 kph. 2 hours ago |
  • Typhoon ‘Soudelor’ outside PAR carries maximum sustained winds of up to 215 kph near the center. 2 hours ago |
  • Signal Number 3 may be raised over Cagayan when Typhoon ‘Soudelor’ enters PAR on Wednesday morning. 2 hours ago |
  • Batanes may experience Signal Number 4 when Typhoon ‘Soudelor’ (with local name ‘Hanna’) enters PAR on Wednesday morning. 3 hours ago |
  • Batangas Gov. Vilma Santos & Camsur Rep. Leni Robredo attend Liberal Party meeting in San Juan today with Mar Roxas. 3 hours ago |
  • Batangas Gov. Vilma Santos & Camsur Rep. Leni Robredo say no one has asked them to run as Roxas’ vice pres’l bet. 3 hours ago |
  • Batangas Gov. Vilma Santos says she may run for Congress but she has not made up her mind. 3 hours ago |
  • Batangas Gov. Vilma Santos says she is not eyeing the vice presidency. 3 hours ago |
  • Camsur Rep. Leni Robredo says she hopes Sen. Grace Poe will agree to become Roxas’ runningmate. 3 hours ago |
  • Camsur Rep. Leni Robredo says if ever she will seek a higher post, it may be the senate. 3 hours ago |
  • Camsur Rep. Leni Robredo says she has no plans of running for vice president. 3 hours ago |
  • Pampanga to experience power interruptions on Thursday. 8 hours ago |
  • Sen. Jinggoy Estrada says Binay’s ‘True State of the Nation’ or ‘TSONA’ reflects the real performance of the Aquino gov’t. 8 hours ago |
  • De Lima says DOJ has no evidence that will pin down House members to the alleged BBL payoff. 8 hours ago |
  • House Sgt. At Arms Radovan says their CCTVs store only 5 days worth of videos before these are automatically erased by the system. 8 hours ago |
  • House Sgt. At Arms Nicasio Radovan says CCTVs in Batasan Complex have no recording of alleged BBL payoff last May 25, 26 & 27. 8 hours ago |
  • Sen. Alan Peter Cayetano says Binay should release his ‘true SALN’ instead of delivering a counter-SONA. 8 hours ago |
  • DOTC Sec. Abaya hits back at Binay & says the VP does not understand the root cause of the MRT problem. 8 hours ago |
Advertisement

Data Breach Trends in 2012

By MST News | Feb. 15, 2013 at 12:01am
In an interview conducted by Manila Standard Tech, Symantec Philippines senior country manager Luichi Robles said data breach incidents and the number of identities stolen have both taken a dip, but remain on an upwards trend for the year 2012.

According to Symantec’s analysis, the overall number of attacks in 2011 and 2012 were about the same. However the number of records stolen in the biggest attacks in 2011 was much larger. The top five breaches in our 2011 data set all registered in the tens of millions of identities. In 2012, only one breach registered above 10 million.

In 2011, a number of high profile data breach cases which resulted in millions of identities stolen by cybercriminals. In January to August 2012, the average number of breaches per month is down slightly, but not by statistically wide margin. The average number of breaches per month was 16.5 in 2011 (in the last 8 months of 2011), while in 2012 this number dropped to 14 breaches.

“We also see that in terms of the average number of identities stolen per breach there is actually a very significant drop recorded. In the last eight months of 2011 the average number of identities stolen was 1,311,629 per data breach. In 2012 (up to August 2012), this number is down to 640,169 identities per breach—that’s a drop of more than half, “ Robles said.

While it is difficult to pinpoint why there are lesser breaches of the size in 2011, it could indicate that the string of high-profile attacks which garnered much attention last year made companies more aware of their own IT security vulnerabilities. Many companies could have taken the steps to shelter important assets such as their customer record databases from Internet attacks, according to Robles.

In a Symantec Philippines report, the average number of identities stolen was 1,311,629 per data breach in the last eight months of 2011. In 2012 (up to August 2012), this number is down to 640,169 identities per breach—that’s a drop of more than half.

While the overall average number of identities stolen is down, the core number of identities stolen, when accounting for variance, is increasing over time. “This could indicate that the attackers are going after more select, targeted batches of data, as opposed to making off with big-number caches of data,” Robles said.

Cybercrime is not the only reason behind data breaches and stolen identities. Many employees would likely have faced the theft of company laptops containing sensitive information before, especially when travelling or moving about. The perpetrators may have only wanted to resell the laptop for profit, but further prying into the laptop’s information could easily lead to data breach incidents.

Other times, hardware such as USB thumb drives are simply lost or misplaced, never making it back to the owners’ hands. In some other cases, poor coding and lack of security  on certain websites may also accidentally expose sensitive private data to the public domain.

When it comes to identities stolen through data breaches however, hackers remain overwhelmingly the main cause, accounting for a whopping 88% of all stolen identities through data breach in 2012. In general, hackers are still responsible for the highest number of data breaches at 40.6%. In addition, data breach was also driven by other factors such as accidental exposure of data (21.4%), Theft or Loss (18.8%) and Insider theft (8.0%), Symantec said.

Industries most affected

Within the different industries, the sector which has suffered the highest number of identities exposed in 2012 is the retail industry. 40% of identities stolen originated from this sector, compared to 15% for the second-place Telecom industry.

On the flipside, looking at the number of data of breaches that had occurred we find that the healthcare industry was actually the most targeted industry of the lot. Even though the number of identities stolen from this particular industry is exceedingly low at 2.7% of the overall number of identities exposed. Given the sensitive nature of medical records, this is a perfect example of a high number of attacks that result in small numbers of highly sensitive records being exposed.

Data breaches are no doubt a serious issue for any and every organisation around the world, particularly in the increasingly connected and globalised environment. The exposure of sensitive information can very easily lead to a significant loss of confidence in the organisation by its customers.

According to Symantec’s 2012 State of Information Survey, Philippine organizations have highlighted that the impact of data loss would include: Lost customers (52%), Damage to the brand (62%), Increased expenses (48%), and Decreased revenue (48%)

Protection

Companies need to assess their risks by identifying and classifying confidential information. In the era of unprecedented information growth, separating the sensitive and useful information from the redundant and unimportant ones can prove to be an uphill task if not done consistently and efficiently.

“It is important that employees are educated on information protection policies and procedures so that everyone in the company knows exactly how to deal with company information, especially sensitive private data. They need to be held accountable to ensure that accidental data breaches or malicious insider attacks can be prevented,” Robles said.

Data loss prevention technologies are crucial for organisations as they enable policy compliance and enforcement on a company-wide level and provides a strong first-line-of-defence against leakage of sensitive data, whether accidental or on purpose.

As laptops are a necessity for employees who are constantly on the go, it is important that all information on them are thoroughly and proactively encrypted. With the right implementation, stolen or lost laptops would at least be able to keep all private data and files securely encrypted and thus rendered useless to anyone who tampers with them.

Business should not make IT security policies an unnecessary burden on employees already saddled by other tasks and responsibilities. Information protection practices should very well be integrated into business processes to ensure a seamless standard-operating-procedure for employees to adhere to. Doing so would make it easier for employees to access the information they need, and harder for future data breaches to occur.
COMMENT DISCLAIMER: Reader comments posted on this Web site are not in any way endorsed by MST.ph. Comments are views by manilastandardtoday.com readers who exercise their right to free expression and they do not necessarily represent or reflect the position or viewpoint of manilastandardtoday.com. While reserving this publication’s right to delete comments that are deemed offensive, indecent or inconsistent with MST.ph editorial standards, MST.ph may not be held liable for any false information posted by readers in this comments section
comments powered by Disqus

In This Category

Want Updates?

Be the first to know on what is latest from MST.ph, simply enter your email below to get started. We don’t spam dont worry!

Advertisement