fbpx

Free tools and resources for Data Protection Officers!

Category Archives for "Research"

Cybersecurity Firms Issue Annual Threat Reports

CrowdStrike, FireEye and IBM Security recently released their annual threat reports. These reports contain a wealth of information on recent trends in cybersecurity attacks and recommendations on the preventive measures companies can take to protect themselves.

Reports can be found here:

Source: Cybersecurity Firms Issue Annual Threat Reports

Data breaches up 400 percent, 15 billion records compromised

The number of data breaches increased more than 400 percent in 2018 exposing almost 15 billion records, according to the identity intelligence company 4iQ.

The company’s annual report confirmed 12,440 new breaches, a 424 percent increase compared to 2017, and of the 14.9 billion records compromised, 3.6 billion were confirmed real and exposed for the first time and were not part of an earlier breach. Government agencies were fastest growing target suffering a 291 percent increase in data breach incidents and the United States and China were home for 47 percent of all breached records, 4iQ found.

Source: Data breaches up 400 percent, 15 billion records compromised: report | SC Media

GDPR compliance boosts business, study shows

Businesses that are embracing the EU’s General Data Protection Regulation (GDPR) enjoy increased efficiency and are more attractive to investors, according to a new study by Cisco.

It was discovered that 59% of companies globally feel they are ready for the GDPR, with a further 29% claiming to be in good shape within 12 months.

Source: GDPR compliance boosts business, study shows

Organizations Taking Less Time to Detect Breaches

Internal security teams at enterprise organizations are generally getting better at detecting compromises, but it’s still taking them well over a month to discover them.

A FireEye analysis of global breach data from 2018 shows that half of all organizations last year took 50.5 days or longer to detect an intrusion after it first began. That was one week faster than the median of 57.5 days it took them in 2017.

Source: Organizations Taking Less Time to Detect Breaches

GDPR spurs cybersecurity improvements at biggest public companies

The introduction of the General Data Protection Regulation (GDPR) spurred the UK’s biggest public companies to improve the measures they put in place to protect data, according to a UK government survey.

“The 2018 Health Check indicates that GDPR has increased the attention FTSE 350 boards give to cyber risk,” the government’s survey report said. “Over three quarters of businesses (77%) report that board discussion and management of cyber risk has increased since the introduction of GDPR, and more than half (55%) of these businesses have increased measures as a result.”

Source: GDPR spurs cybersecurity improvements at FTSE 350 companies

Organisations should be doing more to achieve privacy accountability

The Global Privacy Enforcement Network’s (GPEN) annual intelligence gathering operation looked at how well organisations have implemented the core concepts of accountability into their own internal privacy policies and programmes.

Whilst there were examples of good practice, it was found that a number of organisations had no processes in place to deal with the complaints and queries raised by data subjects, and were not equipped to handle data security incidents appropriately.

Source: Organisations should be doing more to achieve privacy accountability | ICO

UK consumers more likely to abandon a breached company

A study by the payment security firm PCI Pal found British folks are far less forgiving of a company that suffers a breach, with 41 percent saying they would stop frequenting that store brand forever. Only 21 percent of Americans felt the same way.

Source: UK consumers more likely to abandon a breached company | SC Media

Consumers Worry About Personal Data Privacy But Few Take Action

Eighty-one percent of consumers say they’ve become more concerned about how companies use their data, while 87% think companies should be more heavily regulated on personal data management, according to privacy survey from IBM’s Institute for Business Value.

But even though consumers are concerned with one story after another of companies losing or misusing personal data, apparently it’s not enough for them to take actions in response. Seventy-one percent said that they were willing to give up privacy to get access to what technology can offer. Only 45% have updated their privacy settings on products in response and 16% walked away from a company because of data misuse.

Source: Consumers Worry About Personal Data Privacy But Few Take Action: Study | Fortune

New Study Finds Millennials Concerned About Privacy, But Lax On Security

In a Rivetz-commissioned survey of 1,000 U.S. adults, Rivetz found that respondents were incredibly reliant on their smartphones: two-thirds of respondents were willing to allow a friend to borrow their car for 24 hours, but the same percentage were not willing to allow a friend to borrow their smartphone for the same amount of time.

More than 90 percent of respondents said they would find it important or extremely important to prevent someone from accessing the content on their smartphone if they lost it. However, despite fears of losing their smartphones, younger generations were found to be much less concerned about protecting their data than other generations.

Source: New Study Finds Millennials Concerned About Privacy, But Lax On Security

85 percent of Chrome apps and extensions lack a privacy policy

New data from Duo Security shows that more that 85 percent of Chrome apps and extensions don’t have a privacy policy, meaning developers can essentially handle your data however they want.

Duo also found that 35 percent of Chrome apps and extensions can read data on any site you visit. Nearly 32 percent use third-party libraries with known vulnerabilities, and 77 percent have no support site.

Source: 85 percent of Chrome apps and extensions lack a privacy policy

>