2016 Data Breach Fraud Impact Report

2015 was a diverse year for breaches. Data theft from government agencies, healthcare providers, financial institutions, telecoms, retailers, and social networks proved that no industry is immune from attack. Many of these breaches exposed information, such as Social Security numbers, that can leave victims vulnerable for the rest of their lives. All of these breaches occurred within the context of a shifting fraud landscape as EMV thwarts counterfeit card rings and forces them to adopt new tactics.

Key questions addressed in this report:

• How will the relationship between data breaches and consumer identity fraud change in the next few years?
• How are data breaches impacting patronage of breached organizations?
• How can consumers be empowered in the fight against breach-related identity fraud?
• What types of data are likely to become prominent breach targets?

Companies Mentioned: Anthem, LastPass, Mint, Premera, Prosper Daily, Sanrio, Toys "R" Us, Vtech

Consumer data in this report is based on information collected in a random-sample panel of 5,111 consumers in a October/November 2015 survey. The margin of sampling error is ±1.37 percentage points.

U.S. Fraud and Breach Forecast

Javelin forecasted four years of point-of-sale and card-not-present fraud in order to show the expected influence of EMV implementation and other changes in the payments landscape on the amounts of each fraud type. Projections of U.S. card fraud incidences for the years 2016 through 2019 were calculated using U.S. consumer data from Javelin’s annual Identity Fraud Surveys and Javelin’s 2014-2018 CNP and POS fraud forecast from “Fixing CNP Fraud.”