Data Breaches

The Data

1 min read

Willie Sutton famously said that he robbed banks because that's where the money was. You might think that today's thieves would do the same, possibly by hacking into ATM machines. Yet it turns out that financial services account for only 14 percent of data breaches, while 20 percent are in the food and beverage industry.

That's just one surprising statistic in a new global study of some 500 security breaches handled by Verizon Business's RISK Team between 2004 and 2007, involving more than 230 million data records. Verizon's report sorts attacks into seven categories. Hacking is, unsurprisingly, a cybercriminal's favorite weapon. Errors, such as incorrect network settings, directly led to just 3 percent of the breaches, but by giving bad guys a leg up they ended up contributing to many more.

Source: ”2008 Data Breach Investigations Report.” Verizon Business RISK Team

In a disturbing trend, in the study's first year only 8 percent of all attacks involved partner organizations, such as vendors and customers, but by 2007 fully 44 percent did. Twentyâ''four percent of all attacks originating outside an organization came from IP addresses in Eastern Europe. Such addresses can't always lead to a particular attacker's exact location, but some clear patterns emerge. For example, attacks on point-of-sale systems were frequently traced back to Eastern Europe and Russia, while Web graffiti and other defacements often originated in the Middle East.

Source: ”2008 Data Breach Investigations Report.” Verizon Business RISK Team

The full report is available at

To Probe Further

For more on insider cyberattacks, see ”Data Theft by Partner Companies on the Rise.”

This article is for IEEE members only. Join IEEE to access our full archive.

Join the world’s largest professional organization devoted to engineering and applied sciences and get access to all of Spectrum’s articles, podcasts, and special reports. Learn more →

If you're already an IEEE member, please sign in to continue reading.

Membership includes:

  • Get unlimited access to IEEE Spectrum content
  • Follow your favorite topics to create a personalized feed of IEEE Spectrum content
  • Save Spectrum articles to read later
  • Network with other technology professionals
  • Establish a professional profile
  • Create a group to share and collaborate on projects
  • Discover IEEE events and activities
  • Join and participate in discussions