Data breaches are not a figment of anybody’s imagination, they are real, just ask the nearly half of respondents of a new survey just released.
On top of the data breach information, 45 percent said they are not confident they know all instances of when their personal information has leaked, according to RSA’s survey in conducted in conjunction with the Ponemon Institute.
Many of the over 1,000 respondents in the U.S. have an increased concern around security driven by the increase in mobile and the prevalence of data breaches. However, despite growing concerns, in many cases behaviors toward security have not changed.
Despite a year of major retail breaches, there is an inclination to increase online behaviors that have proven risky, like online shopping, and an overwhelming unwillingness to change risky behavior. Forty-eight percent admit to online shopping on a weekly basis, and while respondents rated security expectations high for activities like online banking and mobile transactions, security expectations for online shopping were low.
Even with expectations being low, so many being personally affected by data breaches, and the wave of retail data breaches involving payment card information, 45 percent of the respondents said it has no effect on their use of credit or debit cards.
According to RSA’s Anti-Fraud Command Center, during the first six months of 2014, 33 percent of banking transactions originated in the mobile channel, which marks an increase of 20 percent from 2013 and a 67 percent increase from 2012. One out of four fraud transactions originated in the mobile channel – showing a significant increase in mobile fraud.
Of all of the online activities measured in the survey, making mobile payments ranked highest on the list in terms of expectations of security, yet 77 percent admit to not trusting the security of mobile apps and only 35 percent said they always read permissions of downloaded apps.
Weak authentication is still an issue among most consumers, with 62 percent expressing a lack of trust in websites that only require a username and password at login.
While seventy-one percent of respondents say they are most concerned about losing their password in a data breach, nearly one third admits to only having one to two passwords for all online accounts; 69 percent admit to using the same password for more than one device or site; and only 54 percent said they regularly change their passwords.
When questioned about preferred authentication methods, a majority of respondents cited software tokens and/or biometrics (voice and fingerprint verification) as the ideal ways to manage identities.