How much do you know about data breaches?

Questions and Answers

PDF Questions PDF Answers

What is a data breach?

An intentional release of secure information by an authorized individual

A security violation in which sensitive, protected or confidential data is copied, transmitted, viewed, stolen, altered or used by an individual unauthorized to do so (correct)

An unintentional release of secure information by an authorized individual

A security measure to protect sensitive data

What are the direct and indirect costs of data breaches?

None of the above

Only indirect costs (reputational damages, providing cybersecurity to victims of compromised data, etc.)

Direct costs (remediation, investigation, etc.) and indirect costs (reputational damages, providing cybersecurity to victims of compromised data, etc.) (correct)

Only direct costs (remediation, investigation, etc.)

What is Personally Identifiable Information (PII)?

Personal information that can be used to identify an individual, such as name, address, social security number, etc. (correct)

Trade secrets of corporations

Intellectual property

Personal health information (PHI)

What are the common causes of data breaches?

Insider threats and external threats

What is the estimated global spending on internet security from 2017 to 2021?

Over $1 trillion

What are the types of information that can be involved in data breaches?

Financial information, personal health information (PHI), Personally identifiable information (PII), trade secrets of corporations, and intellectual property

What are the consequences of data breaches?

Costs to organizations, reputational damages, identity theft, and remediation for victims

What are the common external threats to data security?

Hackers, cybercriminal organizations, and state-sponsored actors

What are data breach notification laws?

Laws that require a company that has been subject to a data breach to inform customers and take other steps to remediate possible injuries

Study Notes

Intentional or unintentional release of secure information

• A data breach is a security violation in which sensitive, protected or confidential data is copied, transmitted, viewed, stolen, altered or used by an individual unauthorized to do so.
• Data breaches may involve financial information such as credit card and debit card details, bank details, personal health information (PHI), Personally identifiable information (PII), trade secrets of corporations or intellectual property.
• Data breaches can be quite costly to organizations with direct costs (remediation, investigation, etc.) and indirect costs (reputational damages, providing cybersecurity to victims of compromised data, etc.).
• According to the nonprofit consumer organization Privacy Rights Clearinghouse, a total of 227,052,199 individual records containing sensitive personal information were involved in security breaches in the United States between January 2005 and May 2008, excluding incidents where sensitive data was not exposed.
• Many jurisdictions have passed data breach notification laws, which require a company that has been subject to a data breach to inform customers and take other steps to remediate possible injuries.
• Estimates of breaches caused by accidental "human factor" errors are around 20% by the Verizon 2021 Data Breach Investigations Report.
• In health care, more than 25 million people have had their health care stolen, resulting in the identity theft of more than 6 million people.
• Several studies have been published with varying findings to assess the impact of data breaches.
• From 2017 to 2021, the predicted global spending on internet security is to be over $1 trillion.
• Notable data breaches have occurred in various sectors from 2005 to 2022.
• Data breaches may involve overexposed and vulnerable unstructured data – files, documents, and sensitive information.
• Insider threats are a significant cause of data breaches, while external threats include hackers, cybercriminal organizations, and state-sponsored actors.

Description

Test your knowledge on data breaches and the intentional or unintentional release of secure information with this informative quiz. Explore the direct and indirect costs associated with data breaches, the types of sensitive information that can be compromised, and the impact of data breaches on individuals and organizations. Discover the different causes of data breaches, including accidental human errors and insider threats, and learn about notable data breaches that have occurred in various sectors. Put your cybersecurity knowledge to the test and take this quiz today!