A data breach occurs when confidential, private or sensitive information is exposed to someone unauthorized. The breach may occur because of an accident, a theft or an attack on a computer system or website. The result is personal, organizational and regulatory damage that takes time to recover from.
Data breaches affect people, organizations, and businesses of all sizes. The most high-profile attacks involve large, well-known companies such as Equifax and Marriott, but attacks also target small and medium sized businesses including restaurants and retailers who have Point of Sale (POS) terminals and the personal information stored on them.
Cyber criminals use the data they steal to commit crimes such as identity theft, ransomware, and fraud. Attackers seek out security flaws in hardware and software, phishing schemes, malware infections, and other means to get at the information they want. While prevention efforts by the company holding the data can greatly reduce the risk of a breach, it is impossible to bring it to zero.
After a breach, companies must respond by containing the breach, investigating its cause and scope, and contacting individuals whose information was compromised. This is required by law in many jurisdictions. Companies must also manage the fallout from a data breach, including costly fines and legal challenges.
The most effective way to mitigate harm from a data breach is to limit the amount of time the data is left exposed. This includes contacting search engines to make sure personal information that was posted in error is not archived, and proactively monitoring systems to identify potential vulnerabilities.