IT Governance Identifies 9.9 Million Records Breached in October 2022


In its monthly analysis of data breaches and cyber attacks across the globe, IT Governance has identified 102 publicly disclosed security incidents in October – resulting in 9,990,855 compromised records.

It is IT Governance’s second-highest recorded figure of security incidents this year (August saw 112 publicly disclosed security incidents and 97,456,345 compromised records).

Alan Calder, Founder and Chairman of IT Governance, commented: “What’s worrying is that 9.9 million could have been much higher, with Amazon leaving its database of Prime members’ viewing habits completely exposed – with a total of 215 million compromised records.

“As the records cannot be used to identify customers by name, we have omitted them from our analysis – but it is a stark warning to all organisations about the damage that misconfigured Internet-facing servers can do.

“According to Verizon’s 2022 Data Breaches Investigations Report, 82% of data breaches were the result of human error. As cyber criminals gear up to take advantage of the holiday season, a combination of increased online shopping, discounted deals that are too good to be true, and people working remotely with less access to help from IT teams provides the perfect breeding ground for attacks on unsuspecting victims.

“It is crucial that organisations train and retrain their staff now – before the tidal wave of holidays and Christmas parties takes off – on the dangers of phishing emails and unsolicited attacks, so employees are prepared to combat the anticipated rise in cyber criminal activity.”

Please find the full list of incidents with further details here, broken down into their respective categories: cyber attacks, ransomware, data breaches, malicious insiders and miscellaneous incidents.


About IT Governance

IT Governance is a leading global provider of cyber risk and privacy management solutions, with a special focus on cyber resilience, data protection, the Payment Card Industry Data Security Standard (PCI DSS), ISO 27001 and cyber security.

IT Governance is committed to helping businesses protect themselves and their customers from the perpetually evolving range of cyber threats. Its deep industry expertise and pragmatic approach help clients improve their defences and make key strategic decisions that benefit the entire organisation.

IT Governance’s Protect - Comply - Thrive approach is aimed at helping organisations achieve resilience in the face of constant change.

Press Contact

Cameron Troake, Group Head of Marketing Communications
GRC International Group
Phone: +44 (0)7983 623150

This website uses cookies. View our cookie policy