® 
Data Breach
Definition
A data breach is a security incident in which confidential, protected, or sensitive data is exposed to unauthorized parties. Data breaches can result from a cyberattack, human error, or system failure.
A data breach is a security incident in which confidential, protected or sensitive data is exposed to, accessed by or stolen by unauthorised parties. According to the IBM Cost of Data Breach Report 2024, the average cost of a data breach globally is $4.88 million, the highest ever recorded.
How does a data breach occur?
Data breaches arise through multiple vectors: cyberattacks such as phishing, ransomware and SQL injection, human errors such as accidentally sending sensitive data to the wrong recipient, misconfigured systems making data unintentionally public, stolen or lost devices without encryption, and insider threats. The most common cause is credential abuse.
GDPR notification requirements
Under GDPR, data breaches posing risk to individuals' rights must be reported to the supervisory authority within 72 hours. If the breach poses high risk, affected individuals must also be informed. Organisations must maintain an internal register of all breaches. Failure to report can result in fines up to 20 million euros or 4% of global annual turnover.
Impact on organisations
Breach costs include direct costs (forensics, notification, legal), indirect costs (reputation damage, customer churn, stock price decline) and long-term costs (enhanced security, compliance improvements, legal claims). NIS2 adds incident reporting obligations.
Protection
Minimise stored personal data (data minimisation). Encrypt sensitive data at rest and in transit. Implement DLP to prevent unauthorised data distribution. Monitor access to sensitive data via SIEM. Maintain an incident response plan with specific breach procedures.
How DEFION helps
DEFION conducts Security Assessments evaluating sensitive data protection. Pentests identify vulnerabilities that could lead to breaches. The 24/7 DFIR team is available for forensic investigation and recovery.