BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Re: seriously flawed U Washington breach study

From: Bill Yurcik <byurcik () ncsa uiuc edu>
Date: Thu, 15 Mar 2007 11:28:58 -0500 (CDT)


Bill Yurcik wrote:
"the press does pick up a significant portion of the disclosures between
organizations and the parties affected."

Q1:  What do you mean by "significant"?


significant to mean there are hundreds of disclosures now being reported 
by the press. of course these are a skewed sample of events the press
finds out about and thinks are worthy of reporting . Also there
is nonuniformity between state disclosure laws, non-reporting, etc that 
further skews the sample.


The more important question is whether the breaches that are never even 
reported to anyone "look like" the ones we have info on.  Impossible, 
using current data, to answer.


good point, I agree 100%, no way to know about the total breach situation
with current information!

However, at least now we do have some data to analyze and in the future as 
technology, privacy  laws, cyber-law enforcement, and privacy lawsuits
all mature then we will know more.

Cheers! - Bill Yurcik
_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss
Tracking more than 149 million compromised records in 598 incidents over 7 years.
Previous By Date Next
Previous By Thread Next

Current thread: