Data security incidents hit 47,000 in 2012

Last week I popped over to the Quarry Bay HQ of Verizon Business in Hong Kong to hear more about the annual Data Breach Investigations Report.

The report’s really come on since I covered it way back in 2008, and this year pulled data from an unprecedented 19 reputable sources including Scotland Yard, the US Department of Homeland Security and many more.

The Register covered the main news from the report when it was launched the week before – that China was responsible for a whopping 96 per cent of state-affiliated attacks – so I was keen to get some other APAC-relevant insight from the team.

Unfortunately there wasn’t much to be had, in fact the report itself only mentions Asia Pacific once as a break-out region, to illustrate the top 20 threat types across the whopping 47,000 security “incidents” recorded over 2012.

What this probably tells us is that methods of collecting the data at the moment are pretty non-standardised across the globe, which makes drawing any clear comparisons difficult between regions.

Another thought that occurred: it’s fairly obvious that organisations across the globe suffer from the same kinds of information security risk – whether hacktivist, financially motivated criminal or state sponsored espionage-related.

As Verizon’s HK VP Francis Yip said: “No one is immune from cyber crime. As long as you have an IP address, you are a target, no matter how long you spend online.”

In this respect, there were no startling new trends as such to pull out of the report, aside from China’s consistent and persistent appearance as number one source of state-sponsored shenanigans.

This is probably good news for under fire CISOs, now tasked not only with deflecting financially motivated cyber crime and attempts from hacktivists to take down their sites and steal credentials, but also under-the-radar information theft from APT-style attacks.

What’s also good news, is Verizon’s assertion that the cloud is no less safe than any other form of computing system, as long as IT teams make sure they carry out due diligence on providers.

“Cloud can actually be more secure, because these providers are doing it on an industrial scale with staff who know what they are doing,” argued Verizon’s APAC head of identity and privacy services, Ian Christofis.

While all this is certainly true I definitely got the impression from the briefing that many firms are still failing on the security basics.

“Could try harder” is probably a suitable report card take-away for businesses from 2012.


Can fibre-based smart grids provide a solution to our superfast broadband problems?

fibre opticDo you have superfast fibre optic broadband? The answer is probably not, because in the US, UK, Australia and elsewhere projects are riven by funding issues, political in-fighting and delays, delays, delays. The answer just might be right in front of our eyes.

Take this new report from Ovum on smart grids. Before you fall asleep, the smart grid pilot project it refers to in China is being undertaken by the SGCC, the largest utility in the world, so plenty of food for thought for utilities globally depending on what happens with it.

The crux of the Ovum piece is that the pilot – if it goes nationwide – is likely to offer a potential windfall of up to $2bn for international fibre infrastructure vendors. Yup, the project is basically running power alongside fibre to kill three birds with one stone – deliver power, run a smart grid (ie collect and monitor smart meters in customer homes) and potentially offer triple play services.

This hasn’t really been done with any great degree of success outside of Japan, where investments were made over a long period of time, report author Julie Kunstler told me. But if it works out in China, the big question is whether it could show US utilities a way forward – yes fibre is pretty costly but apply for a telco license or lease the lines to comms providers and they could fund such an investment.

It’s sorely needed, in the US and elsewhere, to manage that difficult last mile problem. As Kunstler told me, it solves this issue because power companies already shoot their cables right into the customers’ home, and are pretty much ubiquitous to boot.

In the end it’s still very early days, and although a technology supplier in China I spoke to said they were confident of this 80,000 home pilot going nationwide, even then, the unique political and economic conditions in the People’s Republic may make it the only country where such a huge project can work.

As Clive Longbottom of analyst Quocirca told me, “getting Verizon and AT&T to work together is like getting Democrats and Republicans to agree on a new fiscal package”.

This is where China has the edge – a basically homogenous, state-run set up where what the government says goes…a government, by the way, which has seemingly bottomless pockets and huge aspirations  to lead the world in technology deployments, the bigger the better.

In the meantime, the citizens of the UK, US, Australia and elsewhere will continue to suffer from the kind of political indecision and selfish stakeholders which have thus far hampered any kind of coherent national superfast broadband strategy.