Your IT Support Experts

We partner with many types of businesses in the area, and strive to eliminate IT issues before they cause expensive downtime, so you can continue to drive your business forward. Our dedicated staff loves seeing our clients succeed. Your success is our success, and as you grow, we grow.


About Us

IT Services

Understanding IT



Contact Us


(703) 621-3900

Free Consultation

Interested in seeing what we can do for your business? Contact us to see how we can help you! Sign Up Today

Ciracom Blog

Which is Worse -- a Phishing Attack or a Data Breach?

Which is Worse -- a Phishing Attack or a Data Breach?

In the realm of cyberattacks, a data breach is perceived as one of, if not the biggest threat that a business can face. They are seen as so dangerous, in fact, that threats like phishing attacks are largely disregarded. However, data from a recent study suggests that this is the opposite of what should happen in a decision maker’s mind.

Starting in March of 2016, Google and UC Berkeley teamed up for a year-long study into how online accounts are compromised. Their results showed that users were more at risk due to phishing attacks than data breaches.

Taking data from phishing and keylogging tools, Google was able to identify that keyloggers had contributed 788,000 compromised credentials to the total, phishing had exposed 12 million, and 3.3 million had been exposed in data breaches. Combining these findings with the fact that the phishing kits that Google observed were collecting a comprehensive data profile led Google to conclude that phishing was the greater threat. This was cemented by the statistics that showed that 12-to-25 percent of phishing attacks actually stole passwords that were still in use, compared with only seven percent of direct data breaches.

While phishing is often used as a means of introducing unauthorized users to access a network, it also has been known to deliver illicit applications that can cause much harm to a business.

In addition to this, there are often signs that indicate that your data has been breached. However, if you’ve fallen victim to a phishing attack, there could be no indication of it until the criminal responsible decided to act upon it--which they would at some point, without question.

However, we feel that it is important to point out that this comparison isn’t exactly one-to-one. A phishing attack is often used as the means to obtain access for a data breach, as we said before, which blurs the line between the two approaches.

Plus, while a phishing attack may be more common than a data breach, a data breach often nets the attacker a much wider range of data with the opportunity to expand and get more. Look at it this way--if you’re phished, you lose a set of data. If your data is breached, you lose all of your data--including any that doesn’t technically belong to you, and was entrusted to you by your staff, customers, and vendors

Either way, this should not be interpreted as a recommendation to defend against one over the other. You need to protect yourself against both types of attack, plus the many more that are out there. For help defending your business, and to make sure it is up to the task of protecting your network give us a call at (703) 621-3900.

New Year’s IT Solution: Outsource IT
Tip of the Week: Lost Internet? Don’t Lose Product...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, January 28, 2021

Captcha Image

By accepting you will be accessing a service provided by a third-party external to

Customer Login

Contact Us

Learn more about what Ciracom can do for your business.

(703) 621-3900

107 S West St Suite 300
Alexandria, Virginia 22314