Affiliation:
1. Cybersecurity at MIT Sloan, MIT Sloan School of Management
2. Cybersecurity at MIT Sloan, MIT Sloan School of Management 8 MIT School of Engineering
3. C6 Bank
Abstract
If the mantra “data is the new oil” of our digital economy is correct, then data leak incidents are the critical disasters in the online society. The initial goal of our research was to present a comprehensive database of data breaches of personal information that took place in 2018 and 2019. This information was to be drawn from press reports, industry studies, and reports from regulatory agencies across the world. This article identified the top 430 largest data breach incidents among more than 10,000 data breach incidents.
In the process, we encountered many complications, especially regarding the lack of standardization of reporting. This article should be especially interesting to the readers of
JDIQ
because it describes both the range of data quality and consistency issues found as well as what was learned from the database created.
The database that was created, available at https://www.databreachdb.com, shows that the number of data records breached in those top 430 incidents increased from around 4B in 2018 to more than 22B in 2019. This increase occurred despite the strong efforts from regulatory agencies across the world to enforce strict rules on data protection and privacy, such as the General Data Protection Regulation (GDPR) that went into effect in Europe in May 2018. Such regulatory effort could explain the reason why there is such a large number of data breach cases reported in the European Union when compared to the U.S. (more than 10,000 data breaches publicly reported in the U.S. since 2018, while the EU reported more than 160,000
1
data breaches since May 2018). However, we still face the problem of an excessive number of breach incidents around the world.
This research helps to understand the challenges of proper visibility of such incidents on a global scale. The results of this research can help government entities, regulatory bodies, security and data quality researchers, companies, and managers to improve the data quality of data breach reporting and increase the visibility of the data breach landscape around the world in the future.
Funder
C6 Bank and Cybersecurity at MIT Sloan
Publisher
Association for Computing Machinery (ACM)
Subject
Information Systems and Management,Information Systems
Reference59 articles.
1. Akamai. 2020. State of the Internet/Security. Retrieved from https://www.akamai.com/us/en/multimedia/documents/state-of-the-internet/soti-security-financial-services-hostile-takeover-attempts-report-2020.pdf. Akamai. 2020. State of the Internet/Security. Retrieved from https://www.akamai.com/us/en/multimedia/documents/state-of-the-internet/soti-security-financial-services-hostile-takeover-attempts-report-2020.pdf.
2. B. Barrett. 2020. Hack brief: An adult cam site exposed 10.88 billion records. Retrieved from https://www.wired.com/story/cam4-adult-cam-data-leak-7tb/. B. Barrett. 2020. Hack brief: An adult cam site exposed 10.88 billion records. Retrieved from https://www.wired.com/story/cam4-adult-cam-data-leak-7tb/.
3. Bleeping Computer. 2020. Carnival cruise line operator discloses potential data breach. Retrieved from https://www.bleepingcomputer.com/news/security/carnival-cruise-line-operator-discloses-potential-data-breach/. Bleeping Computer. 2020. Carnival cruise line operator discloses potential data breach. Retrieved from https://www.bleepingcomputer.com/news/security/carnival-cruise-line-operator-discloses-potential-data-breach/.
Cited by
15 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献