How Data Breaches Happen

Definition of a Data breach: An event in which any type of customer or employee personal information is potentially put at risk of exposure or theft - either in electronic or paper format. The information does no have to be used in a criminal manner to be classified as a breach. The information just has to be put at risk of a crime or fraud.

Data breaches happen daily in every city and state in businesses and organizations of all types and sizes. Most cases go unreported.

We hear about the bigger data breach incidents like TJMaxx with 45.7 million credit/debit card numbers stolen, National Fidelity where 8.5 million checking and banking accounts were stolen and many more that make the headlines. There are many times more cases that go unreported - especially with small businesses.

How a Data Breach Happens

There are many ways a data breach occurs in business.

Careless Employees/Business Owner: This is the most common way a data breach occurs. The business or its employees carelessly or accidentally compromises customer data, letting the information fall into the hands of the thief - lost laptops, unlocked doors, leaving files in the open, not properly disposing of paper and electronic information and more.

Insider Theft: Insider theft from disgruntled current or past employees, or from opportunistic employees who see opportunities to sell customer information to thieves. Many companies only pay attention to perimeter security (preventing the outside from getting to the confidential information) but are now finding they need similar controls on the inside.

Hackers/Cyber-Criminals: Hackers, cyber-criminals and cyber-gangs who break into poorly protected computer systems, networks and websites looking for personal and financial information from customers, employees and the business itself. Often these criminals are in overseas organizations specializing in Identity Theft.

You know how data breaches happen. Now receive a free check up and evaluation of your business. We’ll show you where you are compliant and what you need to improve. Learn how to avoid the embarrassment, penalties and the high cost of a data breach.

Now you can see how a data breaches happen. You see how vulnerable most businesses are to identity theft and fraud. It is only a matter of time before a data breach may occur in your business.

You Must Protect Your Customer and Employee Information

There are strict guidelines on how you protect your customer and employee information set by federal and state governments and the payment card industry. They have set severe penalties for businesses who have data breaches and haven’t complied with these rules and regulations. Compliance isn’t an option it is mandated. Every business that collects personally identifiable customer and employee information must meet these standards.

Privacy Notice: You have my word and promise that your information will never be sold, leased, rented, or distributed. I will treat your valued information as if it were my own. I value your privacy as much as my own. Rest assured you are submitting your information in confidence.

What you need to know before you sign up

for my complimentary, no obligation

30-Minute Data Breach Evaluation:

Home:

News Articles & Important Links

Business:

Personal:

Warren’s Articles

Complete Internet Protection Web Site

“Don’t be misled! Simply downloading a “template” from the Internet might possibly get you off the hook with the feds, but it probably won’t suffice in litigation with an identity theft victim’s lawyer. Attorneys already view this regulation as a “cash cow...”

Larry M. White Certified Compliance Administrator

“It is evident that having a comprehensive written information security program to defend against data breaches, along with an incident-response plan to deal effectively with breaches that do occur, is critical to all companies operating in today’s digital business environment.”

Thomas J. Smedinghoff

Partner in privacy and data security law practice

Burglary/Theft: Identity Theft or a data breach is not limited to electronic means. Information stored in file cabinets and other areas of the business are just as valuable to the thieves. The theft of a computer (or laptop) with important information can be devastating to a business.

Social Engineering: This is where criminals manipulate people into divulging confidential information by playing on their human emotions. Some of these schemes are as simple as how a pickpocket distracts you while another thief steals your wallet or purse. In the case of cyber theft, the criminal never comes face-to-face with the victim while they get social security numbers, bank account numbers or other confidential information. The theft can happen over the phone, via email or through social networking sites such as Facebook and Twitter.

Examples of How Data Breaches Happen

Data breaches can be broken down into a number of categories. What they have in common is that they allow easy access to customer, employee and business information.

Lost or stolen laptops, computers, flash drives, smart phones, or other devices.
Backup tapes lost in transit because they were not sent either electronically or with a human escort.
Hackers breaking into systems.
Employees visiting infected websites, download sites.
Viruses, Trojan Horses, keyloggers, and computer security loopholes.
Emails with unencrypted attachments.
Improper disposal of electronic and paper information
Tossed into dumpsters
Failure to wipe a hard drive clean
Failure to delete a copy machine hard drive
Poor business practices
Unlocked files, rooms
Computer screens visible to the public
Poor or no passwords on computers
Mailers with personal information on them
Inadequate computer/technology safeguards
Employees stealing information or allowing someone else access to information.

What’s At Stake: Devastating Consequences

Not protecting your customer, employee and business information puts you at serious risk. A single data breach can take you down!

You Could lose customers! A single data breach can destroy your customer’s trust and loyalty.
Your company’s image could be damaged. Your personal and business reputation is at stake.
Money could be stolen from your business. Cyber-thieves want to drain your business bank accounts. Once it happens you won’t have any recourse.
Recovery costs can go put you out of business. The disruption, damages and cost of recovery can be over-whelming.

Your business may not survive a data breach or cyber-attack!

I am Warren Franklin a certified information security advisor. I will be the one conducting the checkup and evaluation. I have been involved with computer security and identity theft protection for the last seven years. You can read many articles I have written on personal and business protection. I put together a web site that contains an incredible amount of information on this subject at Complete Internet Protection.

My goal is to make this world a better place to live. I have worked with individuals, families and businesses to protect them against the fastest growing crime in the 21st Century, Identity Theft and cyber-crime over the last seven years.

During the 30-Minute Data Breach Checkup and Evaluation I will not ask for personal or private information. The evaluation is conducted with general questions that will give you the information you need to know to shore up your business, protect against a data breach, and get compliant with federal, state and industry rules and regulations.

Once we conclude the evaluation and determine your level of compliance you can decide to learn more about our compliance services or you can tell me your are not interested. Either way is fine. It is your business and at least you know where you stand in the world of data breach protection and compliance.

I encourage you to sign up today. Your information will be held private. You will not receive spam or unwanted emails. However, you can sign up for my monthly newsletter that keeps you up-to-date on the latest identity theft and cyber-crime activities.

You can email me: moreinfo@completeinternetprotection.com

It’s Your Business! Protect It!

Protecting your business against the single greatest threat of the 21st Century.

Not protecting your customer, employee and business information puts you at serious risk. A single data breach can have devastating consequences.

How a Data Breach Happens

The Scope of the Data Breach Problem

There has to be a change in the poor information security and privacy practices that are standard operating procedure at most businesses and organizations today. Here are statistics that should get your attention:

Here are some startling facts that illustrate the scope of the data breach problem:

According to a list of data breaches reported to the Privacy Rights Clearinghouse alone, there have been over 500 million personal information records lost or stolen through businesses, government agencies and other organizations since 2005.

The FBI estimates that U.S. Businesses lose over $67 billion per year due to computer crime alone.

The nearly 10 million Americans that the FTC estimates are annually victims of identity theft incur a total cost to businesses and consumer of more than $50 billion a year.

It is estimated that 55% or more of the people in the U.S. have now had some of their personal information lost or stolen in one form or another through businesses and organizations.

The International Council for Small Business reports that 85% of fraud occurs in small business.

The Poneman Institute reports six out of ten departing employees steal proprietary information.

88% of lost/stolen records is due to employee negligence or fraud.

Data Breach

News Articles