Compromises in 2011

Total compromises in 2011 were just over 224 million, more than six times the approximately 34 million in 2010. The number of compromise incidents was up in every category except where the number of compromised was unknown and that was about the same.

In 2011 there were almost nine times as many non-financial (those exposing social security numbers, names, email addresses, telephone numbers, medical information or other personal data) breaches than financial breaches (those exposing charge card or bank account information).

The largest financial breach in 2011 was 04/27/2011 when Sony exposed 12 million charge cards. The largest non-financial breach in 2011 was end of March/early April when Epsilon (a mass email service) exposed an incredible 125 million names and email addresses.

At more than 640 compromises in 2011 that means, on average, there was more than one a day. More saddening than that: for large compromises there were several two-a-day and 9/1/2011 had three in that one day. For smaller breaches there were five on 1/6/2011 and 1/29/2011 and a dozen on 12/9/2011. For breaches exposing an unknown number of accounts there were similar clusters including five each on 1/26/2011 and 10/27/2011. Perhaps random clusters, but the incidents of reported compromise are rising.

10,000+ per breach Total Affected Financial Non-Financial
Affected Count 223,646,320 20,865,307 202,781,013
Incident Count 102 24 78
% by # affected 9.33% 90.67%
% by incidents 23.52% 76.48%


Under 10,000 per breach Total Affected
Affected Count 439,371
Incident Count 303


Unknown Number affected
Incident Count 220


Compromises in 2011 affecting 10,000 or more
Compromises in 2011 affecting under 10,000
Compromises in 2011 affecting an unknown, or undisclosed, number

Return to References page
Return to Year Link page