Data Loss Statistics

Select Timeframe

The Open Security Foundation's DataLossDB gathers information about events involving the loss, theft, or exposure of personally identifiable information (PII). DataLossDB's dataset, in current and previous forms, has been used in research by numerous educational, governmental, and commercial entities, which often have been able to provide statistical analysis with graphical presentations.

The charts below are provided in "as-is" format based on the current dataset maintained by the Open Security Foundation and DataLossDB. These charts may be used for analysis and presentation by outside organizations provided visible credit is given to the Open Security Foundation and/or DataLossDB.org. Please contact curators@datalossdb.org with any questions or comments about the statistics presented on this page.

NUMBER OF INCIDENTS

Chart?chs=700x400&cht=bvs&chl=2001|2002|2003|2004|2005|2006|2007|2008|2009|2010&chd=s:babclsp9lf&chm=t16,000000,0,0,11|t5,000000,0,1,11|t14,000000,0,2,11|t24,000000,0,3,11|t141,000000,0,4,11|t533,000000,0,5,11|t490,000000,0,6,11|t725,000000,0,7,11|t442,000000,0,8,11|t60,000000,0,9,11&chbh=52,15,30&chg=-1,9

TYPES OF INCIDENTS

Chart?chs=700x400&cht=p&chtt=incidents by breach type - all time&chl=stolenlaptop+-+20%25|hack+-+16%25|web+-+13%25|fraudse+-+8%25|stolencomputer+-+7%25|disposal_document+-+5%25|snailmail+-+4%25|unknown+-+4%25|email+-+4%25|lostmedia+-+3%25|stolendocument+-+3%25|losttape+-+2%25|lostdocument+-+2%25|lostdrive+-+2%25|stolentape+-+1%25|stolendrive+-+1%25|stolenmedia+-+1%25|virus+-+1%25|lostlaptop+-+1%25|disposal_computer+-+0%25|lostcomputer+-+0%25|disposal_drive+-+0%25|missinglaptop+-+0%25|disposal_tape+-+0%25&chd=t:20,16,13,8,7,5,4,4,4,3,3,2,2,2,1,1,1,1,1,0,0,0,0,0 Chart?chs=460x200&cht=p&chtt=incidents by business type - all time&chl=biz+-+48%25|edu+-+21%25|gov+-+19%25|med+-+12%25&chd=t:48,21,19,12 Chart?chs=460x200&cht=p&chtt=incidents by data type - all time&chl=naa+-+34%25|ssn+-+32%25|dob+-+7%25|ccn+-+6%25|fin+-+5%25|misc+-+5%25&chd=t:34,32,7,6,5,5 Chart?chs=700x400&cht=p&chtt=incidents by vector - all time&chl=outside+-+64%25|inside-accidental+-+21%25|inside-malicious+-+7%25|unknown+-+5%25|inside+-+3%25&chd=t:64,21,7,5,3


THIRD PARTIES AND DATA LOSS

The following graphs highlight a trend that indicates that data loss incidents involving third parties, on average, result in a greater number of records lost that incidents that do not involve third parties. This may be as a result of the type of data handled by third parties, the process of transferring the data between organizations, or other hypothesis, mostly all speculative as little data exists to establish one cause as dominant. The trend is, however, concerning.

Chart?chs=460x200&cht=p&chtt=incidents involving 3rd parties - all time&chl=w%2fthird_parties+-+15%25|wo%2fthird_parties&chd=t:14 Chart?chs=460x200&cht=p&chtt=records, involving 3rd parties - all time&chl=w%2fthird_parties+-+32%25|wo%2fthird_parties&chd=t:31

DATA LOSS MAPS

World Map

This map outlines data loss incidents per headquarter's location, world-wide. This map is not affected by the chosen timeframe, it represents all documented incidents in datalossdb.org for the given geographic area.

Chart?chtt=data loss incidents, all time, worldwide&chf=bg,s,eaf7fe&chco=f5f5f5,faebd7,ff0000&chs=440x220&cht=t&chtm=world&chld=au|bd|br|bs|ca|ch|cn|cr|de|dk|fr|gb|gu|hk|ie|in|it|jp|kr|li|nl|no|nz|pl|se|tt|us&chd=t:6,1,1,1,64,3,1,1,7,1,2,116,1,3,10,2,1,14,1,1,2,1,1,1,1,1,1874

USA Map

This map outlines data loss incidents per headquarter's location in the USA. This map is not affected by the chosen timeframe, it represents all documented incidents in datalossdb.org for the given geographic area.

Chart?chtt=data loss incidents, all time, usa&chf=bg,s,eaf7fe&chco=f5f5f5,faebd7,ff0000&chs=440x220&cht=t&chtm=usa&chl=ak|al|ar|az|ca|co|ct|dc|de|fl|ga|hi|ia|id|il|in|ks|ky|la|ma|massachusetts|md|me|mi|mn|mo|ms|mt|n carolina|nc|nd|ne|new york|nh|nj|nm|nv|ny|oh|ok|or|pa|rhode isl|ri|s carolina|sc|sd|tn|tx|ut|va|vt|w virginia|wa|wi|wv|wy&chd=t:4,14,8,16,201,42,41,31,7,63,49,8,17,8,73,38,9,21,9,75,1,45,11,32,28,20,6,4,15,54,1,7,1,20,49,11,15,217,84,14,25,47,2,9,2,8,2,39,104,11,68,6,1,30,21,7,6

Incidents:

Data Types:

Sectors:

Sources:

Breach Types:

Sponsored By: Credant_200x51 Tenable Pgp_logo Zecurion
Permission is granted to use this database in non-profit works and research. Use of the DataLossDB, and its exports, RSS feeds, reports, or other materials produced on this site by the Open Security Foundation for commercial interests requires authorization and licensing arrangements. For more information, please e-mail curators@datalossdb.org with a brief summary of how you would like to use this information; product, service, research, etc.
© 2005 - 2010, Open Security Foundation, All Rights Reserved.