[Dataloss] seriously flawed U Washington breach study
Bill Yurcik
byurcik at ncsa.uiuc.edu
Thu Mar 15 16:28:58 UTC 2007
> Bill Yurcik wrote:
> "the press does pick up a significant portion of the disclosures between
> organizations and the parties affected."
>
> Q1: What do you mean by "significant"?
significant to mean there are hundreds of disclosures now being reported
by the press. of course these are a skewed sample of events the press
finds out about and thinks are worthy of reporting . Also there
is nonuniformity between state disclosure laws, non-reporting, etc that
further skews the sample.
> The more important question is whether the breaches that are never even
> reported to anyone "look like" the ones we have info on. Impossible,
> using current data, to answer.
good point, I agree 100%, no way to know about the total breach situation
with current information!
However, at least now we do have some data to analyze and in the future as
technology, privacy laws, cyber-law enforcement, and privacy lawsuits
all mature then we will know more.
Cheers! - Bill Yurcik
More information about the Dataloss
mailing list