This is an interesting point. With nearly all businesses handling and/or storing personal information and credit card/payment data, is a breach a near certainty for them? I think that particular industries (medicine for example) lend themselves to data breaches due to the fact that they have so much information available via medical records, much of it is digital (and more so in the future) and available on networks allowing for potential breaches.
Here’s a good quote, the article is worth a read.
“Ninety percent of businesses have fallen victim to at least one cyber security breach in the last 12 months according to a survey sponsored by Juniper Networks.”
