No. of Records Exposed in 2020 Q1 Data Breaches Skyrockets to 8.4 Billion
May 11, 2020 • RBS
Today, we released our 2020 Q1 Data Breach QuickView Report, which finds that the total number of publicly reported breaches in Q1 2020 has decreased by 58% compared to the same period last year. Despite this, the number of records exposed for this quarter skyrocketed to 8.4 billion – a 273% increase compared to Q1 2019, and a record for the same period since at least 2005, when detailed reporting began.
“Based on our experience, the decrease of publicly disclosed breaches in Q1 of 2020 should not be interpreted as a decline in breach activity. Quite the contrary. The turmoil that the pandemic has brought has created a unique opportunity for malicious actors and a stressful environment primed for mistakes. Once the dust settles, we anticipate the number of reported breaches will be on par with, if not exceed, 2019.”Inga Goddijn, Executive Vice President, Risk Based Security
The report explores in further detail how the COVID-19 pandemic, and the ensuing economic impact, has laid the groundwork for successful cyber attacks.
“On average, hacking exposed an average of approximately 850,000 records per breach and most breaches originated from outside the organization. We are continually finding that simply meeting regulatory standards or contractual obligations do little to actually prevent a breach from occurring.”Inga Goddijn, Executive Vice President, Risk Based Security
The 2020 Q1 Data Breach QuickView Report covers the data breaches reported between January 1, 2020 and March 31, 2020.
About the QuickView Report and Cyber Risk Analytics
The quarterly Data Breach QuickView report is a service of Cyber Risk Analytics (CRA), which provides actionable threat intelligence about organizations that have had a data breach or leaked credentials. This enables organizations to reduce exposure to the threats most likely to impact them and their vendor base.
In addition, our PreBreach vendor risk ratings, the result of a deep-view into the metrics driving cyber exposures, are used to better understand the digital hygiene of an organization and the likelihood of a future data breach.
The integration of PreBreach ratings into security processes, vendor management programs, cyber insurance processes and risk management tools allows organizations to avoid costly risk assessments, while enabling businesses to understand their risk posture, and to act quickly and appropriately to proactively protect their most critical information assets.
UPDATE: An earlier version of the 2020 Q1 Data Breach QuickView report included the statement: “the total number of publicly reported breaches in Q1 2020 has decreased by 42% compared to the same period last year.” This is inaccurate as phrased. It would be true to say that the 2020 number is 42% of the 2019 number, but that is not the intended statistic. The statement has been updated to read “the total number of publicly reported breaches in Q1 2020 has decreased by 58% compared to the same period last year.”