#USA #Cybersecurity #Boston #Blancco #Data Loss

Blancco's New Findings on Data Loss: A Shift in Priorities

In a groundbreaking study, Blancco Technology Group has unveiled crucial insights on the dynamics of data loss in the ever-evolving digital landscape. The findings from the recently released 2025 State of Data Sanitization Report underscore a significant shift in the causes of data breaches. Surprisingly, the report reveals that stolen devices and drives are more prevalent causes of data loss than both ransomware attacks and stolen credentials.

Understanding the Research

Conducted among 2,000 IT, cybersecurity, and sustainability leaders across North America, Europe, and Asia-Pacific, the report sheds light on the modern challenges that organizations face in data management. Specifically, it highlights the intersection of artificial intelligence (AI), regulatory compliance, and environmental considerations that have become central to companies' data strategies in recent years.

The research indicates that 86% of enterprises reported experiencing a data breach within the last three years, while 73% encountered data leaks. Among the leading causes, phishing-related breaches topped the list at 54%, followed closely by improper network configurations (46%), and stolen devices or drives holding sensitive information (41%). In stark contrast, weak or stolen credentials accounted for only 36%, while ransomware incidents constituted 32% of reported cases.

The Role of AI in Data Management

One intriguing aspect of the report is the dual-edged nature of AI's impact on data management. On one hand, 25% of respondents noted that AI has led to an increase in redundant data storage, complicating compliance efforts. Conversely, over half of the enterprises that leverage AI reported that it helps clarify retention policies and enhance the sanitization process. This complexity illustrates a critical need for businesses to balance technological advancements with robust data protection practices.

Compliance Investment Surge

Given the challenging landscape of data protection regulations and cybersecurity frameworks, the report notes a marked increase in investment to bolster compliance efforts. Over half of the participating organizations indicated they are upping their investments in compliance, averaging an increase of 46%. Significantly, 55% of companies already have established policies for data disposition, with 42% in the process of defining new rules.

Yet, these compliance measures do not come without consequences. A considerable amount of functional devices are destroyed to mitigate the risk of data compromise, resulting in unnecessary electronic waste. According to survey participants, as many as 47% of devices that are decommissioned for data security reasons still had operational capabilities.

Environmental Concerns and Future Considerations

Interestingly, the report also notes a growing intersection between environmental sustainability and data management. An overwhelming 90% of respondents acknowledged that sustainability considerations play a vital role in their data disposal decisions. Moreover, 77% stated that their IT and sustainability teams work closely to harmonize data management practices with environmental goals.

As organizations navigate this complex web of cybersecurity, regulatory compliance, and environmental concern, the commentary from Blancco's CEO, Lou DiFruscio, serves as a vital reminder: "Improper data disposal is a hidden risk—and it's not talked about enough. Every business IT leader needs to understand its responsibilities and seek best practices that uphold compliance with data privacy regulations."

Summary of Key Findings

In summary, the Blancco 2025 State of Data Sanitization Report not only identifies the increasing importance of understanding compliance obligations but also stresses the urgency of embracing effective data sanitization strategies. Key conclusions drawn from the report include:

• - 83% of enterprises are utilizing some form of AI, with 98% upgrading their endpoint devices to accommodate AI requirements.
• - 97% of AI-deploying organizations have also updated data center assets accordingly.
• - A worrying 37% of enterprises were unaware of industry standards like NIST 800-88, which governs data sanitization practices.

This report serves as a call to action for businesses to take proactive measures in safeguarding sensitive information while being mindful of their environmental footprint. The landscape of data management is changing, and organizations must adapt accordingly to stay secure and compliant in this digital age.

For a deeper understanding of these findings, the full Blancco 2025 State of Data Sanitization Report can be accessed here.