CERT NZ recently released their quarterly report for October to December 2017.
CERT (originally denoting Computer Emergency Response Team) receives computer security incident reports, monitors trends in incidents and attacks, and provides alerts and advice on how to respond to incidents and prevent further attacks. The reports CERT receives might be from individuals, companies or government agencies. CERT also receives some reports that are more appropriately handled by other agencies, so their system is designed to pass these reports on to NetSafe, Department of Internal Affairs, Police or the National Cyber Security Centre as appropriate.
There is some overlap between CERT’s area of interest and our interest in incidents that lead to the exposure of personal data. Many of the incidents reported to CERT involve phishing and credential harvesting. The phishing may use personal information from earlier privacy breaches. Credential harvesting may mean that some personal information has been harvested, but the larger risk to privacy is generally from the use that may be made of those credentials.
CERT categorises four percent of the losses reported as involving loss of data. Not all of this would be personal data. This indicates that most computer security incidents do not (as far as we know) result in the disclosure of personal information.
CERT’s reports help everyone to understand the risks to their data. This is why when people report data breaches to us which are the result of a computer security incident (such as hacking) we encourage them to also report the incident to CERT NZ at www.cert.govt.nz.
Image credit: Goshawk - via Audubon's Birds of America