To me, this data screams out the need to mature and measure your effectiveness protecting data at rest before investing in other control areas. Just as the Verizon and other breach reports demonstrate, resist chasing the trendy threats (APTs) until you address the basics.
For blog eye candy, here's a table and some pie of the counts. NOTE: I changed some of the "Types" for grouping. Do not use this graph without studying the data. Better yet, produce your own, it only takes a couple minutes in xl.
Counts by Type (modified for presentation)
Other (mostly paper, some PED))
Also in the healthcare world, thanks toSecurosis for pointing out this gem: $4.3M HIPAA fine. Note the angle for the fine but it can be useful for the greater good.
Share on Facebook
Share on Twitter
I'm busy working on my blog posts. Watch this space!