I see a lot of studies on data breaches in my role at Symantec. Naturally, the recent voluntary report on data breaches from California’s Attorney General piqued my interest. The report describes the 131 notifications her office saw in 2012 and provides recommendations based on those findings. And while it’s not as detailed as some studies from security vendors, the California report is consistent with trends we see nationally and globally. There are many useful nuggets and valuable insights that businesses can take away from this report, so I encourage you to give it a read. You can see the full report here. But, in the meantime, I’d like to offer up what I found to be the most interesting stats and how they compare to broader national and global data breach trends.
Most breaches are not mega-breaches