ForgeRock®, the leading platform provider of digital identity management solutions, today announced the ForgeRock U.S. Consumer Data Breach Report found cybercriminals exposed 2.8 billion consumer data records in 2018, costing over USD 654 billion to U.S. organizations. Cyberattacks to U.S. financial services organizations cost the industry over USD 6.2 billion in Q1 2019 alone, up from just USD 8 million in Q1 2018. Even though investments in information security products and services have been on the rise, with USD 114 billion invested in 2018, cybercriminals continue to attack organizations across a wide spectrum of industries to gain access to valuable consumer data.
Click here to access the report.
According to the research, personally identifiable information (PII) was the most targeted data for breaches in 2018, comprising 97 % of all breaches. By targeting PII, cybercriminals prove that they are hungry for consumer data and the research also found the most frequent attack method was from unauthorized access, encompassing 34 % of all attacks. Healthcare, financial services and government were the sectors most largely impacted by cyberattacks.
“It’s clear from our research findings that consumer data is valuable and highly sought after by cybercriminals as well as very difficult for organizations to protect,” said Eve Maler, VP of Innovation and Emerging Technology of ForgeRock. “Organizations can protect consumer data by implementing a strong customer identity management program. Every industry has incentives to avoid brand damage and costly breaches, and so organisations must use modern techniques of identity and access management to secure their infrastructure, from servers in the data centre to client applications and smart devices at the edge.”
- Almost half (48 %) of all consumer data breaches happened in the healthcare sector, four times as many in any other sector.
- Financial services and government were the second and third most victimized industries, collectively comprising 20 % of all breaches.
- Although the number of breach incidents in financial services was down 20 % in Q1 2019, compared to Q1 2018, over 26.9 million consumer records were compromised in the Q1 2019 breaches alone, which is a 78900 % increase over Q1 2018.
- Date of birth and/or Social Security Numbers were the most frequently compromised type of PII in 2018, with 54 % of breaches exposing this data.
- Name and physical address (49 %) and personal health information (46 %) were the second and third most commonly compromised type of PII in 2018.
ForgeRock evaluated U.S. electronic data breaches affecting consumers that were reported between January 1, 2018 and March 31, 2019. Only breaches with a known number of consumers or records were incorporated in the report. The breaches were further categorised by industry, type of data breached and type of attack.
ForgeRock® is the Digital Identity Management company transforming the way organizations build trust and interact securely with customers, employees, devices, and things. Organizations adopt the ForgeRock Identity Platform™ as their digital identity system of record to monetize customer relationships, address stringent regulations for privacy and consent (GDPR, HIPAA, FCC privacy, etc.), and leverage the Internet-of-Things. ForgeRock serves hundreds of brands, including Morningstar, Vodafone, GEICO, TomTom, and Pearson, as well as governments such as Norway, New Zealand, and Belgium, among many others. Headquartered in San Francisco, California, ForgeRock has offices in Austin, London, Bristol, Grenoble, Munich, Paris, Oslo, Singapore, Sydney and Vancouver, Washington. ForgeRock is privately held, backed by leading global venture capital firms Accel Partners, Foundation Capital, Meritech Capital and KKR. For more information and free downloads, visit www.forgerock.com