A global perspective on data breach trends
Trustwave released key findings and recommendations in its annual report on global data breach and security trends. Report analysis included investigations, research and client engagements based on 300 data breach investigations and 2,000 penetration tests conducted by the Trustwave SpiderLabs advanced security team during 2011.
"In 2011, we performed 42 percent more data breach investigations and assembled a thorough study on business password practices," said Nicholas J. Percoco, Senior Vice President and head of SpiderLabs. "The information we have gathered highlights security trends and risks that businesses should address in 2012."
Key report findings include:
- Customer records accounted for 89 percent of breached data investigated.
- The Asia-Pacific region comprised a larger share of data breach investigations in 2011.
- Only 16 percent of victimized organizations detected breaches internally.
- 84 percent of victimized organizations relied on an external entity for breach detection.
- Attackers had an average 173.5 days' access to data before external entities detected it.
For a second consecutive year, the report identified the food and beverage industry as the top target for cyber-criminal activity, accounting for nearly 44 percent of data breach investigations. Franchise businesses, which accounted for more than a third of SpiderLabs' 2011 breach investigations, is expected to be the business model most at risk for breaches in 2012, researchers noted.
"Any organization can be a target, but as detailed in our report findings, those most susceptible are businesses that maintain customer records or that consumers frequent most, including restaurants, retail stores and hotels," Percoco said.
For a list of security recommendations and to download a complimentary copy of the Trustwave 2012 Global Security Report, visit :