Tuesday, March 13, 2012

Top 10 InfoSec Facts in 2011





Top 10 Security Threats in 2011:
1. Nation sponsored hacking: when APT meets industrialization
2. The insider threat is much more than you expected
3. Man in the browser attacks
4. Misanthropes and anti socials: privacy vs. security in social networks
5. File security takes center stage – data breaches
6. Data security goes to the cloud
7. Mobile devices compromise data security
8. Hackers feeling the heat
9. Cybersecurity becomes a business process
10. Convergence of data security and data privacy regulation worldwide

Top 10 biggest data breaches of 2011:
1. Sony Playstation Network, Qrioctiy, Sony Online Entertainment – 101 million user accounts – April 26, 2011
2. Epsilon, Alliance Data Systems – 60 million email addresses (estimated) – April 1, 2011
3. HBGary Federal – 60,000 records – February 7, 2011
4. WordPress – 18 million records (estimated) – April 14, 2011
5. University of South Carolina – 31,000 PII records (Personal Identifying Information) – March 4, 2011
6. TripAdisor, Expedia – Unknown number of user emails – March 24, 2011
7. RSA Security – Compromise of SecurID technology – March 18, 2011
8. HuskyDirect.com/Univ. of Connecticut – 18,059 PII records – January 11, 2011
9. Seacoast Radiology – 231,400 PII records – January 12, 2011
10. Ankle and Foot Center of Tampa Bay – 156,000 PII records – January 29, 2011
11. CitiGroup – 250,000 records and climbing – June 2011 (BONUS)


BONUS - Largest data breaches of all time: 
• Heartland Payment Systems – 130 million records – hacked January 20, 2009
• TJX Companies, Inc – 94 million records – hacked January 17, 2007
• TRW – 90 million records – hacked June 1, 1984
• Sony Corporation – 77 million records – hacked April 26, 2011
• National Archives – 76 million records – improper disposal October 5, 2009
• CardSystem – 40 million records – hacked June 19, 2005
• RocyYou, Inc. – 32 million records – hacked December 14, 2009
• U.S. Dept. of Veterans Affairs – 26 million records – stolen May 22, 2006
• HM Revenue and Customs – 25 million records – lost November 20, 2007
• Sony Corporation – 25 million records – hacked May 2, 2011
• T Mobile – 17 million records – lost October 6, 2008

No comments:

Post a Comment