Most organizations are actually pretty easy targets for attackers. I’ve always wondered though, why the particular companies that have massive invasions the reason the hackers targeted them? Supposedly a credit card number can get you $1.00 on the black market. I assume if you have stolen say 2 million that’s quite a handful of chunk change. The more personal information you can steal, the higher the price.
In every survey, what are organizations concerned about? Security. How many are proactively doing anything about it, or have they evaluated the risk and it is of low value. The recent IBM/Ponemon survey, ‘IBM 2015 Cost of Data Breach Study’, indicates attacks are going up alarmingly and so is the price tag.
In another recent article, Coviello tackles cloud privacy, government’s key escrow plan I found one particular series of statistics very interesting and sobering. Acuity Solutions President Kris Lovejoy painted a gloomy picture of cloud data privacy, which by the way this is an excellent article.
According to Mr. Lovejoy,”An average organization of 15,000 would look at approximately 1.7 million security events per week. Of those 1.7 million security events, 324 of those events were security attacks. Those security attacks were deliberate attacks carried out by motivated attackers,” she said. “For those attacks, 2.1 of those 324 attacks would result in a compromise. So 2.1 times a week a bad guy was getting into the organization.”
Kind of frightening isn’t it?