Figure 4. Data breaches that could lead to identity theft by sector and identities exposed by sector64 Source: Based on data provided by OSF DataLoss DB
institutions in the education sector often store a wide range of personal information belonging to students, faculty, and staff. this information may include government-issued identification numbers, names, or addresses that could be used for the purposes of identity theft. Finance departments in these institutions also store bank account information for payroll purposes and may hold credit card information for people who use this method to pay for tuition and fees. these institutions—particularly larger universities— often consist of many autonomous departments. Sensitive personal identification information held by these individual departments may be stored in separate locations and be accessible to many people using separate and distinct control systems. Educational institutions are faced with the difficult task of standardizing and enforcing security across dispersed locations, as well as educating everyone with access to the data on the security policies. this may increase the opportunities for an attacker to gain unauthorized access to data because there are multiple points of potential security weakness or failure.
Symantec Global internet Security threat report
2% 2% 2%
1% 1% 1% 1% <1%
Due to rounding, percentages might not equal 100 percent.