Verizon is out with its 2017 Data Breach Investigation Report (DBIR) digest. In an event at the Verizon Innovation Center in San Francisco on Feb. 13, Bryan Sartin, managing director of the Verizon RISK Team, detailed some of the highlights of the report and the broader VERIS methodology for detailing data breaches.
Sartin said that instead of providing detailed graphs and statistics, the Data Breach Digest provides stories about specific attacks. Among the attacks discussed in the digest is one that Verizon refers to as IoT Calamity. In the IoT Calamity attack, a university is attacked through vending machines, smart light bulbs and over 5,000 IoT devices throughout the campus.
"For us, it's always really critical in a services setting to present technical information in a non-technical fashion," Sartin said.
To that end, Verizon has a taxonomy it created called VERIS (Vocabulary for Event Recording and Incident Sharing) that provides the ability for data sharing in a confidential manner. It also enables Verizon to define cyber-threat profiles.https://o1.qnsr.com/log/p.gif?;n=203;c=204660766;s=9477;x=7936;f=201812281312070;u=j;z=TIMESTAMP;a=20392931;e=i
Watch the video with Bryan Sartin, managing director of the Verizon RISK Team, below:
Sean Michael Kerner is a senior editor at eSecurityPlanet and InternetNews.com. Follow him on Twitter @TechJournalist.