Home Initiatives Cyber Incident & Breach Readiness Guide

Cyber Incident & Breach Readiness Guide

Championing Data Privacy & Protection to Enhance Consumer Trust 

We promote security standards, responsible privacy practices, and related tools to help organizations protect their data and be prepared for a data loss incident. The Cyber Incident & Breach Trends Report summarizes findings and explores key trends seen for cyber incidents in 2017.  The analysis and commentary is not limited to data breaches alone, but extended to include ransomware, business email compromise (BEC), distributed denial-of-service (DDoS), and vulnerabilities created by IoT devices. As defined by OTA researchers, incidents include unauthorized: 1) access to a system or device and its data,  2) extraction, deletion or damage to any form of data,  3) disruption of availability and/or integrity of any business operation, and/or 4) activities causing financial or reputational harm.

Our work helps organizations of all sizes in both the public and private sector. Content helps aid a broad set of stakeholders, ranging from business and technical decision makers and privacy and security professionals to web and app developers. The goal is to help readers better understand the issues and solutions that can enhance their data protection practices and enable them to develop readiness plans in the event they incur a data loss incident.  

Even the most cyber-savvy organizations have found themselves exposed and ill-prepared to manage the effects of a data breach. The best defense is implementing a broad set of operational and technical best practices that helps protect your company and your customers’ personal data. The second step is to be prepared with a data lifecycle plan that allows a company to respond with immediacy. Ultimately, industry needs to understand that effectively handling a breach is a shared responsibility of every functional group within the organization. A key to success is moving from a compliance perspective to one of stewardship. This perspective recognizes the long term impact to a brand, the importance of consumer trust, and implications and considerations with vendors and business partners.

Cyber Incident & Breach Trends Report (released January 25, 2018)

2018 Data Privacy & Protection Day Press Release (January 25, 2018)

(See past reports)

Online Trust Alliance Reports Doubling of Cyber Incidents in 2017

Thu, Jan 25, 2018

Reston, VA – The Online Trust Alliance (OTA), an Internet Society initiative with the mission to enhance online trust, today released its Cyber Incident & Breach Trends Report. OTA’s annual analysis found that cyber incidents targeting businesses nearly doubled from 82,000 in 2016 to 159,700 in 2017. Since the majority of cyber incidents are never reported, OTA believes the actual number in 2017 could easily exceed 350,000.

Feb 14, 2018
The Guardian

The world recorded over 160,000 security breaches, data thefts, and disruption of business operations, and a host of others in 2017 according to the 10th yearly cyber incident and breach trends report of the Online Trust Alliance (OTA). "Because organisations are shifting more workloads to the cloud -and many breaches involved cloud providers, it urges them to follow best practices, such as auditing

Jan 28, 2018
SC Media

Out of nearly 160,000 reported cyber incidents affecting businesses in 2017, 93 percent could have been prevented by following basic security measures such as regularly updating software, blocking fake email messages, using email authentication, and training employees, a new report claims.

Jan 26, 2018
MIT Technology Review

A report by the Online Trust Alliance says that the number of reported cyber incidents, from ransomware attacks to e-mail hacks, doubled to 159,700 last year.

What to do: OTA says that 93 percent of attacks reported were avoidable. “Equipping [users] to make good decisions can go a long way toward securing systems,” it adds.

Jan 26, 2018

Companies around the world suffered nearly 160,000 cyberattacks and data breaches last year, despite the fact that a majority of them were avoidable, according to researchers. “Even organizations with substantial resources and expertise in data and technology can find themselves inappropriately defended and unprepared,” the report said.

Jan 25, 2018

The number of cyber incidents globally doubled to 159,700 last year, according to the Online Trust Alliance’s (OTA) Cyber Incident & Breach Trends Report released Thursday. Why it matters: Given "that most incidents are not reported, this number could easily exceed 350,000," Jeff Wilbur, director of the OTA initiative at the Internet Society writes.

Jan 25, 2018
The Hill

The Online Trust Alliance released its annual analysis of cyber incidents and breach trends on Thursday, finding that the number of cyber incidents targeting businesses almost doubled from 2016 to 2017, largely driven by the rapid rise in ransomware.

Jan 25, 2018
IT World Canada

There may have been as many as 160,000 breaches of security controls, data thefts or disruption of business operations last year around the world, most of which could have been easily prevented, an industry group estimates.

Jan 25, 2018

Cyber incidents targeting businesses nearly doubled in 2017 compared to 2016, totaling 159,700, according to a reportout this morning from the Online Trust Alliance. The big reason? Ransomware, the organization concluded. 

Jan 25, 2018

Businesses beware: Cyberattacks targeting businesses nearly doubled in the past year, from 82,000 in 2016 to 159,700 in 2017, according to a Thursday report from the Online Trust Alliance (OTA). This further highlights the need for enterprises to implement proper cyber hygiene practices and employee training to keep critical business systems and data secure. 

Subscribe to Cyber Incident & Breach Readiness Guide