IT Security & Network Security News & Reviews: 10 Biggest Data Breaches of 2011 So Far
Expedia's Trip Advisor, email marketing provider Epsilon, Sony's online entertainment services, professional engineering society Institute of Electrical and Electronics Engineers. They all suffered some kind of a data breach in the first four months of 2011. At one point, it seemed like there was at least one new security breach being reported every week. The incidents listed above don't include any health care data breaches, accidental information exposure like British Petroleum's lost laptop or Texas State Comptroller's office storing information on an open FTP server or corporate espionage such as the attacks on RSA Security and Oak Ridge National Laboratory. What organizations get hit depend entirely on what motivates the attacker. And as recent months have shown it's not always about "dollars and cents," Application Security CTO Josh Shaul told eWEEK. "If you are an organization with money, there is someone out there who would be happy to steal it from you. If you have valuable data, same deal," Shaul said. For this slide show, eWEEK analyzed a list pulled from PrivacyRights.org containing more than 150 events reported in 2011. We focused on hacked incidents, or "electronic entry by an outside party, malware and spyware." Below are some of the largest data breaches reported in 2011so far.
Sony's PlayStation Network, Qriocity, Sony Online Entertainment
Date Reported: April 26Size: 101 million user accountsType of Data: name, home and e-mail addresses, login credentials, some credit card information Sonys three cloud services for PlayStation games, music and video, and online gaming were compromised by attackers while the company was distracted by a distributed denial of service attack from a different source. The company is rebuilding the services to be more secure.