New Research: Data Breach Reports Down in 2020, Yet Over 27 billion Records Exposed
August 17, 2020 • RBS
Our new 2020 Mid Year Data Breach QuickView Report exclusively reveals that, although the number of publicly reported data breaches stands at its lowest point in five years, the number of records exposed is more than four times higher than any previously reported equivalent time period.
“The striking differences between 2020 and prior years brings up many questions.Inga Goddijn, Executive Vice President, Risk Based Security
Why is the breach count low compared to prior years? What is driving the growth in the number of records exposed? And perhaps most importantly, is this a permanent change in the data breach landscape?
These questions and more are discussed and dissected in the 2020 Mid Year Data Breach QuickView Report. The report explores in detail how supply chain disruptions, brought on by the COVID-19 pandemic, have impacted data breach reporting and influenced other trends. In addition, we explain the cause behind the alarming amount of records exposed.
“Misconfigured databases and services have been the key driver behind the growing number of records exposed. When entire databases are left open and freely accessible, a considerable amount of data is put at risk.Inga Goddijn, Executive Vice President, Risk Based Security
In the second quarter of 2020, just two breaches alone were responsible for more than 18 billion of the 27 billion records put at risk.”
The 2020 Mid Year Data Breach QuickView Report covers the data breaches reported between January 1, 2020 and June 30, 2020.
About the QuickView Report and Cyber Risk Analytics
The quarterly Data Breach QuickView report is a service of Cyber Risk Analytics (CRA), which provides actionable threat intelligence about organizations that have had a data breach or leaked credentials. This enables organizations to reduce exposure to the threats most likely to impact them and their vendor base.
In addition, our PreBreach vendor risk ratings, the result of a deep-view into the metrics driving cyber exposures, are used to better understand the digital hygiene of an organization and the likelihood of a future data breach.
The integration of PreBreach ratings into security processes, vendor management programs, cyber insurance processes and risk management tools allows organizations to avoid costly risk assessments, while enabling businesses to understand their risk posture, and to act quickly and appropriately to proactively protect their most critical information assets.