Articles Tagged with ''data breach''

235 million TikTok, Instagram and YouTube accounts exposed in database breach

August 24, 2020

A database breach has exposed profile data for nearly 235 million users of TikTok, Instagram, and YouTube.

August 24, 2020

Let’s face it, passwords are a pain. As we’ve been pushed towards using longer and ever more complex passwords, and told to update them with increasing frequency, password management has become something of a headache. We’ve gone from simple, easy to remember passwords to 12- or 16-character passwords that must contain a mixture of upper and lowercase letters, numbers and symbols.

5 Minutes with Saad Gul on LifeSpan's data breach

August 21, 2020

We speak to Saad Gul, Co-Chair of the Poyner Spruill, LLP, privacy and cybersecurity team, and learn about the Lifespan HHS investigation, what it means for data security professionals and why the HSS ruling should be a warning to all companies with HIPPA information.

Data breach reports down 52% in the first half of 2020; Number of records exposed increase to 27 billion

August 17, 2020

Risk Based Security released their 2020 Mid Year Data Breach QuickView Report, revealing that although the number of publicly reported data breaches stands at its lowest in five years, the number of records exposed is more than four times higher than any previously reported time period.

Persistent data exposure is a much riskier problem in today’s remote world

Data discovery and classification is imperative for recovery

Nisha Amthul

August 14, 2020

In her “Top Breaches of 2019”, a security journalist asked if last year would “…be the worst on record?” It looks like 2020 could surpass last year’s breaches, but it’s not entirely due to consequences of the global pandemic. For sure, unprecedented levels of remote working has emboldened hackers to exploit new vulnerabilities, but there’s one very insidious risk that shows up year after year: the silent and unwitting exposure of sensitive data that no one notices… until it’s too late.

Revised NIST Cyber Security Framework - Security Magazine

SANS Institute suffers data breach due to phishing attack

August 13, 2020

SANS Institute, a provider of cybersecurity training and certification services, lost approximately 28,000 items of personally identifiable information (PII) in a data breach that occurred after a single staff member fell victim to a phishing attack.

5.5 million files leaked affecting cybersecurity firms, insurance companies, universities and more

August 10, 2020

The vpnMentor cybersecurity research team, led by Noam Rotem and Ran Locar, have uncovered an unsecured AWS S3 bucket with over 5.5 million files and more than 343GB in size that remains unclaimed.

Compromised employee accounts led to most expensive data breaches over past year

July 29, 2020

The results of a global study examining the financial impact of data breaches reveals that the incidents cost companies $3.86 million per breach on average, and that compromised employee accounts were the most expensive root cause.

Outsourcing Data: Don't Take a Fairytale Approach

92% of top websites provide attackers with access to customer data

Tala Security’s Global Data at Risk - 2020 State of the Web Report indicates that sensitive data like PII and credit card information has never been more at risk - and security effectiveness is declining, as the vast majority of global brands fail to implement controls to prevent data leakage and theft.

July 14, 2020

Despite increasing numbers of high-profile data breaches, forms found on 92 percent of websites expose customer data to an average of 17 domains, according to Tala Security's Global Data at Risk - 2020 State of the Web Report

How to protect ERP data when access to corporate networks is both ubiquitous and for sale on the dark web

Piyush Pandey

July 13, 2020

With a myriad of employees and contractors given ubiquitous access to business data, one thing is clear; identity has become the new security perimeter. Ensuring ERP data security, privacy, and compliance can no longer rely solely on network threat monitoring but requires using a layered identity defense to limit access to and within mission-critical applications.

The 2026 threat environment will be louder, faster, and more interconnected. The most pressing risks, from global political volatility to emerging tech disruptions, will challenge organizations to act amid ambiguity and protect credibility in an era of accelerating uncertainty.