As 2022 comes to an end, it’s no surprise that the past year was full of data thefts and breaches. But with new reports emerging, it’s clear just how many people fell victim. According to the Identity Theft Resource Center (ITRC) data breach report, although the total number of data breaches did not surpass the record set in 2021, the number of people affected by them increased by 42% to a staggering 422 million people.
The lack of information in data breach reports
Companies reported a total of 1,802 data breaches last year, only 60 reports shy of 2021’s total. However, the ITRC data breach report highlights a concerning trend of companies not providing enough information about the breaches they have experienced. The largest category in the report is “Not Specified, ” followed by Phishing and Ransomware. With companies only describing 34% of the reported breaches.
Out of all the data breaches, Twitter had the biggest one, with 221 million victims, accounting for 47% of the total reported number. Other members of the top five list include Neopets, AT&T, Cash App and Beetle Eye. In most cases, the stolen data was limited to a user’s name and social security number. But in some instances, it included other personal identifiable information (PII) that can be used to identify or impersonate individuals.
According to ITRC CEO Eva Velasquez, this lack of details in data breach reports makes it difficult for researchers to gather enough information to help consumers, businesses, and government organizations make informed decisions about their data security risks and how to respond in case of a compromise. She also warns that this makes it difficult for individuals to protect themselves from the harmful effects of data breaches. Therefore, fueling an epidemic of identity fraud committed with compromised or stolen information.
It’s clear that companies may not always prioritize our data security, therefore it is always a good idea to stay vigilant and take steps to protect our data. One of the easiest ways to protect your data is by using strong passwords and two-factor authentication (2FA).