What percentage of security breaches originate internally vs. externally?

What percentage of security breaches originate internally vs. externally? Where could I find further information...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

on this topic?

This is a statistic that's quoted a lot -- often 80% of breaches occur internally -- but there's varying data on it. The CSI/FBI Computer Crime and Security Survey has interesting data on this, but I would also recommend checking out other surveys from security magazines and research firms. A Google search using the words "information security survey" turns up some good info.

The bottom line is no one really knows for sure, but it's a considerable amount. Based on what I see, the odds are that more external attacks occur, but are often blocked by basic perimeter security controls. On the other hand, even though internal security breaches probably occur less often, when they do, it's bad news. I wrote an article intellectual property leakage (which is what most internal breaches are about) for the Feb. 2004 issue of Information Security magazine that covers this subject and provides a survey of vendor solutions.

Are insiders really a bigger threat?

Security Policies Tip: Terminating a system administrator

Employee monitoring: Is Big Brother a bad idea?

Read the March 2004 issue of Information Security magazine for more in-depth coverage.

For more info on this topic, please visit these SearchSecurity.com resources:

This was last published in March 2004

Dig Deeper on Data security breaches

SearchCloudSecurity

Business still not addressing insider threat

Most firms will not be GDPR-ready by compliance deadline

One in eight people have suffered a healthcare data breach

Should CISOs share the responsibility for a cybersecurity incident?

Please create a username to comment.

SASE identity policies enhance security and access control

Comparing SASE vs. traditional network security architectures

Defining and evaluating SOC as a service

How to manage the surge in remote video internet traffic

Supporting remote workers in your pandemic response plan

Take a look at 6 top VPN service providers for remote work

Why data in digital transformation is crucial to your business

How data science can help your company withstand the pandemic

A checklist for digital transformation success

Compare UEM capabilities of Citrix Workspace vs. VMware Workspace One

VMware Workspace One feature speeds remote onboarding

Discover how Catchpoint helps end-user experience monitoring

Evaluate on-premises vs. cloud computing pros and cons

5 tips that can lead to Azure cloud management success

AWS security options grow with Amazon Detective

Coronavirus threats ramp up as more hospitals come under attack

Samsung, AWS claim world’s first mission-critical comms video call

The growing stature of open source in APAC

Dig Deeper on Data security breaches

Business still not addressing insider threat

Most firms will not be GDPR-ready by compliance deadline

One in eight people have suffered a healthcare data breach

Should CISOs share the responsibility for a cybersecurity incident?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.