Yr of the Hack? A Billion Data Compromised in 2014
Over a billion private knowledge data have been compromised by cyberattacks in 2014, a brand new report has revealed, pushed by excessive-profile breaches on Residence Depot, JPMorgan and eBay.
The 1,023,108,267 data breached in 2014 got here from simply 1,541 incidents, in accordance with the Breach Degree Index report by digital safety firm Gemalto. It marked a seventy eight % surge within the variety of private knowledge data compromised in comparison with 2013.
Final yr noticed numerous main hacking assaults on corporations together with Sony Footage Leisure and funding financial institution JPMorgan. The most important incident occurred when AliExpress, a service run by New York-listed Alibaba, was breached, leaving 300 million private data open to hackers, who did not want passwords to entry the accounts.
U.S. public sale web site eBay was additionally hit by a cyberattack which led toone hundred forty five million private piece of knowledge being compromised — the second-largest incident of the yr. EBay stated hackers obtained entry to "encrypted passwords and different non-monetary knowledge", in a press release in Might, when it revealed particulars of the breach.
The third largest incident of the yr was an assault on retailer House Depot, by which 109 million data have been compromised. When the cyberattack was revealed, the corporate stated that hackers had stolen information containing e-mail addresses, however not "passwords, cost card info or different delicate private info."
Hackers shifting techniques
The Gemalto researchers famous that cyber criminals had switched their focus to the hijacking of identities for lengthy-time period achieve.
"We’re clearly seeing a shift within the techniques of cybercriminals, with lengthy-time period id theft turning into extra of a aim than the immediacy of stealing a bank card quantity," Jason Hart, vice chairman of cloud providers, id and knowledge safety at Gemalto, stated within the report.
"Id theft might result in the opening of latest fraudulent credit score accounts, creating false identities for legal enterprises, or a number of different critical crimes. As knowledge breaches turn out to be extra private, we’re beginning to see that the universe of danger publicity for the typical individual is increasing."
Id theft accounted for greater than half of the breaches in 2014, a dramatic rise from 20 % in 2013, whereas hacking for the aim of monetary entry dropped from 50 % of breaches in 2013, to 17 % final yr.
Apparently, there have been 176 knowledge breaches amongst retailers, accounting for simply eleven % of the entire variety of incidents. But this accounted for fifty five % of the whole variety of data stolen in 2014, highlighting the vulnerability of shops particularly.
Specialists stated this might be as a result of customers typically have one passwords throughout a number of retailer web sites, making it straightforward for hackers to realize entry to a number of accounts.
"Hackers know individuals use the identical passwords for a number of accounts. In case you can infiltrate one retailer, the probabilities that the info you steal from one retailer can be utilized repeatedly," David Emm, senior safety researcher at Kaspersky Lab, advised CNBC by telephone.
He added that retailers particularly might not have the safety experience and, as such, knowledge safety could possibly be lax.
"Loads of suppliers are usually not securing passwords and never storing info in encrypted codecs. If the info just isn’t protected, not solely does the breach occur, however then knowledge can leak out," Emm added.
Arjun Kharpal is a Information Assistant for CNBC in London. He took on the position after interning on the firm for 3 months. Arjun has beforehand written for the Occasions, the Telegraph, the Guardian and the Mirror in London. He holds a BA in English Literature from the College of York and an MA in Newspaper Journalism from Metropolis College, London.