The number of records exposed in data breaches and leaks has surged to 36 billion so far this year, across almost 3,000 separate incidents, further extending 2020s status as the worst year on record.
Although businesses sustained an onslaught during the first two quarters of 2020, the last three months added an additional 8.3 billion exposed records to the tally, with the 36 billion total representing twice the number of records leaked throughout 2019.
Two breaches alone exposed over a billion records each, while four breaches exposed over 100 million records together, accounting for 22.3% of Q3 records exposed, according to research by Risk Based Security. The largest incident of Q3 is attributed to an open Elasticsearch server, which exposed six billion records, though the 6.4TB of data included multiple interactions with the same client, meaning roughly 700,000 individuals were affected.
“The quagmire that formed in the breach landscape this Spring has continued through the third quarter of the year,” said executive vice president at Risk Based Security, Inga Goddijn.
“Breach disclosures continue to be well below the high water mark established just last year despite other research indicating the number of attacks are on the rise. How do we square these two competing views into the digital threat landscape?”
Though the number of exposed records has risen drastically, there’s been a decline in the number of publicly disclosed breaches. For Q3 in 2019, there were 6,021 data breaches reported by this point in the year, but only 8.3 billion records were exposed.
Goddijn argues these trends could be explained by a reduced level of media coverage, although another factor is the pivot by hackers to more lucrative ransomware attacks, with companies not always having the obligation to report the incident publicly, particularly in jurisdictions outside the EU.
Indeed, ransomware has been involved in 21% of reported breaches during 2020, with 440 incidents this year including ransomware as a component. It should also be noted that rules governing when an organisation must notify authorities over a data breach are different in the US and Europe, with American businesses not bound by the strict reporting demands set out under GDPR.
The vast majority of incidents (77.5%) were attributed to ‘outside’ hackers or cyber criminals. Of the 17% that originated from within the organisation, 67% of those were deemed the result of human error, including missing devices or misconfigured databases, while 13% were regarded as malicious.
RELATED RESOURCE
How to improve cyber security for remote working
13 recommendations for security from any location
Some major 2020 incidents include an attack on fitness technology app Kinomap in April, leading to the exposure of 42 million records. In March, printing company Doxzoo inadvertently exposed 343GB of data through a misconfigured AWS S3 bucket, including sensitive information relating to branches of the UK and US military.
Only last month human error was blamed for the exposure of data belonging to 18,000 Welsh residents who had tested positive for COVID-19, which was leaked for 20 hours on a public-facing server. This incident, although smaller in scale, represented a raised threat due to the sensitive nature of the data exposed.
-
Trump's AI executive order could leave US in a 'regulatory vacuum'News Citing a "patchwork of 50 different regulatory regimes" and "ideological bias", President Trump wants rules to be set at a federal level
-
TPUs: Google's home advantageITPro Podcast How does TPU v7 stack up against Nvidia's latest chips – and can Google scale AI using only its own supply?
-
15-year-old revealed as key player in Scattered LAPSUS$ HuntersNews 'Rey' says he's trying to leave Scattered LAPSUS$ Hunters and is prepared to cooperate with law enforcement
-
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to knowNews The group appears to be infecting support and help-desk personnel with remote access trojans and other forms of malware
-
Impact of Asahi cyber attack laid bare as company confirms 1.5 million customers exposedNews No ransom has been paid, said president and group CEO Atsushi Katsuki, and the company is restoring its systems
-
The US, UK, and Australia just imposed sanctions on a Russian cyber crime group – 'we are exposing their dark networks and going after those responsible'News Media Land offers 'bulletproof' hosting services used for ransomware and DDoS attacks around the world
-
A notorious ransomware group is spreading fake Microsoft Teams ads to snare victimsNews The Rhysida ransomware group is leveraging Trusted Signing from Microsoft to lend plausibility to its activities
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
