IT teams are being told to keep data breaches quiet
Even though most know they should be reporting any incidents
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Even though hiding a data breach from the regulators (and the public) might result in major fines, legal ramifications, and a tarnished brand image, many businesses still do it, new research has claimed.
A repot from Atlas VPN claims nearly half (42%) of IT leaders around the world were told to keep cybersecurity incidents to themselves.
What’s more, more than half of the surveyed businesses said they had experienced at least one data breach in the last 12 months.
Growing problems
There are many reasons why businesses should be reporting cybersecurity incidents to the authorities, with the most obvious one being customer data theft.
Cybercriminals who steal personally identifiable data may use it for impersonation and other types of fraud or sell it to third parties on the dark web. Customers not knowing they’re being impersonated online only exacerbates the problem. Furthermore, sharing the type ofmalwareused in the attack might help other businesses stay protected.
Still, almost a third (30%) of IT pros kept data breaches a secret, even though they knew they should be reporting them.
Among all of the countries surveyed for the report, US businesses fared the worst, it was said, with almost three-quarters (70%) of IT leaders in the country being told to keep cyber incidents hush-hush. Also, more than half (55%) kept data thefts a secret, even though they knew it was the wrong thing to do.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
T-Mobile to fork out $350m penalty over infamous data breach>Many organizations admit to covering up data breaches>Here’s our rundown of the best firewalls
On the other end of the spectrum are German businesses, where just above a third (35%) were told to be quiet, and only 15% actually were. Furthermore, more than half (54%) were never told to keep a cyberincident a secret.
“In an age where data breaches have become a grim reality, such practice undermines the fundamental principles of transparency, accountability, and proactive risk mitigation. Organizations must recognize that concealing data breaches erodes customers' trust and hinders the collective effort required to combat cyber threats,” commented Cybersecurity writer at Atlas VPN, Vilius Kardelis.
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.
A new form of macOS malware is being used by devious North Korean hackers
Scammers are using fake copyright infringement claims to hack businesses
This new malware utilizes a rare programming language to evade traditional detection methods
