There is no “typical” data breach and, unfortunately, no simple set of steps exists to secure an organization’s critical information, according to a study of 345 U.S. data breaches reported in the year ended April 1.


Schmidt But companies that pay attention to technology, process and people—“the proverbial whole matrix of security,” as Howard Schmidt, president of the Information Systems Security Association, puts it—can still protect their customers and themselves.

American corporations, educational enterprises and governments can lose (or be fleeced of) vital data with stunning creativity, Attrition.org’s Data Loss Archive and Database shows. Chase Bank One employees reportedly left a 165-page ...