California Data Breach Report (February 2016)

February 1, 2016 10:12 am Media Services

Read the full California Data Breach Report

Executive Summary

Since 2012, businesses and government agencies have been required to notify the Attorney General on breaches affecting more than 500 Californians. In our latest report, we analyze all such breaches from 2012 through 2015. In it we present our findings on the nature of the breaches that are occurring, what can be learned from them about threats and vulnerabilities, and we make recommendations aimed at reducing the risk of data breaches and mitigating the harms that result from them.

In the past four years, the Attorney General has received reports on 657 data breaches, affecting a total of over 49 million records of Californians. In 2012, there were 131 breaches, involving 2.6 million records of Californians; in 2015, 178 breaches put over 24 million records at risk. This means that nearly three in five Californians were victims of a data breach in 2015 alone.

These breaches occurred in all parts of our economy: retailers and banks, doctors, dentists and hospitals, gaming companies, spas, hotels, restaurants, government agencies, schools, and universities. The majority of the reported breaches were the result of cyber attacks by determined data thieves, many of whom took advantage of security weaknesses. Breaches also resulted from stolen and lost equipment containing unencrypted data, and from both unintentional and intentional actions by insiders (employees and service providers).

Member Essentials

Agency Management

Business Development

Discipline Resources

Research Services

Databases

Industry Verticals

Topics

Talent

4A’s Foundation

Learning & Development

Participate

Leadership

Disciplines

Regional

More

4A’s Conferences & Events

4A’s Webinar Series

Industry Updates

Topics

Initiatives

Podcasts

About Us

News

Get in Touch

Membership

California Data Breach Report (February 2016)

Executive Summary