Verizon Creates Public Security Database
NEW YORK -- One of the most effective ways to fight cyber-attacks is through the open sharing of information. This is why Verizon, as a leading voice in the industry, started the Verizon Data Breach Investigations Report (DBIR), and why we have expanded the amount and ways information is shared with each new publication of the report. However, even the DBIR shares only a fraction of the available data.
Currently, there is no publicly available, comprehensive raw dataset on security incidents that is sufficiently rich to support both community research and corporate decision making. Public data exists in a variety of forms and areas, but there is no central location where data is organized in a way that lends itself to the level of manipulation and transformation required for research. Even in the publicly-accessible places where this information resides the underlying data is not freely and publicly available for use. This has made it difficult for researchers to effectively study security incidents and hampered risk manager’s ability to make well informed assessments using publicly available data.
Verizon is addressing this need by launching a new initiative to collect, organize and publish all publicly disclosed data breaches. The data is coded into VERIS format and available in an interactive dashboard via Tableau Public as well as in individual files in JSON format in a GitHub repository. Both can be reached from the VERIS Community site as well.
Verizon Communications Inc.