According to the report, malicious attacks on networks
skyrocketed by 81 percent in 2011. The report also highlights that
advanced persistent threats, known as APT attacks, are spreading to
organizations of all sizes, with the number of daily APT attacks
increasing from 77 per day to 82 per day by the end of 2011. Such
attacks are no longer limited to large organizations, as
demonstrated by the data in the report. According to Symantec, more
than 50 percent of such attacks target companies with fewer than
250 employees. It is possible that smaller organizations are now
being targeted because they are somehow related to larger
companies, through supply chain or other relationships —
and they are less well-defended.
The 2011 Report also includes information regarding data
breaches. According to Symantec, approximately 1.1 million
identities were stolen per data breach on average in 2011, and
hacking incidents exposed 187 million identities in 2011
— the largest number for any type of data breach in
Now here comes the "kicker".......the most
frequent cause of data breaches was theft of loss of unencrypted
data on a computer or other medium on which data is stored or
transmitted, such as a smartphone, USB drive, or a backup device.
These theft or loss related breaches exposed 18.5 million
The content of this article is intended to provide a general
guide to the subject matter. Specialist advice should be sought
about your specific circumstances.
To print this article, all you need is to be registered on Mondaq.com.
Click to Login as an existing user or Register so you can print this article.
In last year's BakerHostetler Incident Response Report, we reported the range of PCI DSS non-compliance fines as $5,000 – $50,000 and the per card amount of liability imposed to reimburse issuers of affected cards as $3-$25.
Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C.
The Payment Card Industry Security Standards Council (PCI SSC) has released a new version of its data security standard for the protection of cardholder data, the Payment Card Industry Data Security Standard (PCI DSS).
The idea of cybersecurity may be foreign—or even frightening—to many attorneys. However, as evidenced in Part One of this series ("Cybersecurity: You Can't Afford to Ignore It Anymore," April 25) law firms appear to be the next great target for hackers. In light of that, as a risk management prevention tool, attorneys and firms need to be aware of how to protect themselves.
This service is completely free. Access 250,000 archived articles from 100+ countries and get a personalised email twice a week covering developments (and yes, our lawyers like to think you’ve read our Disclaimer).