The Identity Theft Resource Center launches Breach Response Program

Identity Theft - Phishing : The Identity Theft Resource Center launches Breach Response Program

Posted by Max on 2008/4/2 14:31:55 (1018 reads)

Data breaches disclosed by Hannaford Bros Supermarket Chain, GE Money, and Georgetown University are just some of the 167 breaches reported during the first quarter of 2008, according to the non-profit Identity Theft Resource Center (ITRC). This is more than double the first quarter in 2007 (76 breaches).

This first quarter breach report is derived from the ITRC's breach database, designed specifically to quantify and track data breach incidents. Reported breaches from January 1 through March 31, 2008 potentially affect more than 8 million Americans, compared to the 54 million people reported in 2007, a number skewed by the TJX breach and "unknown or not disclosed" affected records.

For this reason, ITRC looks more closely at the number of breaches rather than the number of records potentially exposed. Since 2005, the ITRC has recorded 1,083 breaches.

The 2008 ITRC Breach Report, as of 3/31/2008, reflects 167 reported breaches, more than 1/3 of the total number of breaches for calendar 2007. ITRC also categorizes these breaches into the following areas:

Business (35.9%)
Educational (25.2%)
Government/Military (18%)
Medical/Healthcare (13.8%)
Banking/Credit/Financial (7.2%).

These 2008 Breach Reports are available on the ITRC website: ITRC will also provide comparison information from previous years. In 2008, ITRC monitored paper vs electronic breaches, and insider theft vs data on the move. For this information, please contact the ITRC.

"What sets this breach list apart from others is the ITRC's assessment and evaluation of the potential risk to the personal identifying information," said Linda Foley, founder of the Identity Theft Resource Center. "Updated on a weekly basis, this breach list can be used as a reference by anyone to comprehend the depth and breadth of data loss. All sources of information are qualified before being listed on the report."

Jay Foley, ITRC Executive Director adds, "It is ITRC's philosophical belief that any breach is one too many breaches. It is with this concept in mind that ITRC continues to urge governmental entities and corporations into taking proactive measures to minimize their risk of a breach rather than dealing with the consequences of a breach after the fact."

In the digital age, the compromising of information continues to grow at an alarming rate. It is important to note, however, that while there may be more breaches being reported, ITRC believes it is premature to draw the conclusion that more breaches are occurring.

The increase in number may be due to state mandatory reporting laws, corporate integrity or the fear of media exposure. Part of the increase may also have been due to legislation but ITRC does not advocate only legislative solutions. Many of the best proactive information handling protocols are coming from industry groups, often dictating higher standards than may be imposed by legislation.

What is clear is that those receiving breach notification letters are often being given incorrect directions or not enough information, based on a study by ITRC experts of more than 150 breach notification letters. This failure to accurately communicate with potentially affected populations is driving people away from on-line banking, e-commerce and creating a distrust of any entity that requests personal information such as Social Security number, dates of birth, medical insurance numbers and financial account numbers.

A Fact Sheet for those who receive notification letters is available online.

Introducing the Identity Theft Resource Center "Breach Response Program"
The Identity Theft Resource Center (R), nationally recognized for its expertise on identity theft, has consistently held the view that both consumers and businesses are the dual victims of identity theft.

As part of its outreach program to companies and governmental agencies, ITRC now provides Breach Response Services including recommendations for notification letters, first responder call center training, website FAQs, and assistance in establishing clear communications by the breached entity. These measures lead to improved public relations. The purchase of consumer products is NOT a pre- requisite for ITRC breach response services.

About the ITRC
The Identity Theft Resource Center(R) (ITRC) is a non-profit organization established to support victims of identity theft in resolving their cases, and to broaden public education and awareness in the understanding of identity theft. It is the on-going mission of the ITRC to assist victims, educate consumers, research identity theft and increase public and corporate awareness about this problem. Visit http://www.idtheftcenter.org/

Previous article - Next article

Other articles
2009/11/3 14:55:39 - BitDefender Top Ten Malware Threats for October 09
2009/11/3 14:29:38 - Nov. 09 Microsoft Security Intelligence Report
2009/10/7 15:19:17 - StopSign AntiVirus and Anti-Malware is Windows 7 Compatible
2009/10/7 15:11:26 - New Outlook Backup and Migration Software By Disk Doctors
2009/9/30 4:20:57 - Microsoft Security Essentials, FREE Security Tool Just Released
2009/9/28 14:31:52 - New Rogue Antispyware Cloaked To Infects Computers
2009/9/9 4:31:49 - Trend Micro Proves Leadership in URL Filtering and Web Security
2009/9/9 4:16:20 - New Free Tool to Clean Conficker Once and For All
2009/9/1 8:37:11 - Kaspersky Internet Security 2010 and Kaspersky Anti-Virus 2010 Out Now
2009/9/1 7:54:50 - NEW P2P Advertising Network Protects Users Against Lawsuits And Identity Theft

The comments are owned by the poster. We aren't responsible for their content.