Data breaches - Information Management Today

Too Much Remains Unknown About Data Breaches

Data Breach Today

JULY 15, 2022

Attempts to Accurately Track Breaches and Ransomware Hampered by Scarce Details Ransomware attacks and data breaches: One thing both have in common is the challenge of attempting to accurately understand their true scale and impact.

Data breaches

Data breaches Ransomware

T-Mobile USA Investigates Possible Data Breach

Data Breach Today

AUGUST 16, 2021

Group Claims GGSN Misconfiguration Led to 100 Million User Accounts T-Mobile USA says it is investigating a claim that as many as 100 million accounts may have been compromised in a data breach. The person who claims responsibility for the alleged breach says T-Mobile misconfigured a Gateway GPRS Support Node.

Data breaches

Data breaches IT

Health Data Breach Trends: A Mid-Year Report

Data Breach Today

JULY 19, 2021

Ransomware Attacks, Vendor Incidents Continue to Dominate Ransomware attacks and breaches of vendors continue to account for the biggest health data breaches added to the official federal tally so far this year.

Data breaches

Data breaches Ransomware

Study: Average Cost of a Data Breach Rises to $4.9 Million

Data Breach Today

JULY 30, 2024

Involving Law Enforcement After Ransomware Attacks Drives Down Costs, Study Finds Data breaches continue to grow more costly, with the average cost of a breach hitting an all-time high of $4.9

Data breaches

Data breaches Ransomware

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance. Keeper Security is transforming cybersecurity for people and organizations around the world.

Passwords

Credit Union Issues Belated MOVEit Data Breach Notification

Data Breach Today

AUGUST 26, 2024

Texas Credit Union Only Just Notifying 500,000 Members About May 2023 Data Theft Fifteen months after a massive supply-chain attack hit users of MOVEit secure file-transfer software, Texas Dow Employees Credit Union has issued a data breach notification pertaining to 500,474 victims, saying it only discovered last month their personally identifiable (..)

Data breaches

Data breaches Security IT

Video Game Streamer 'Twitch' Confirms Massive Data Breach

Data Breach Today

OCTOBER 6, 2021

Reports: Platform's Entire Source Code Compromised in 125GB Leak Amazon-owned video streaming service Twitch, which focuses on video games and e-sports broadcasts, reportedly suffered a massive data breach, which the company vaguely confirmed via Twitter.

Data breaches

Kroger, British Airways Agree to Settle Data Breach Lawsuits

Data Breach Today

JULY 6, 2021

based British Airways have each agreed to settle class action lawsuits filed in the wake of two massive data breaches. Class Actions Filed Against Each Company After Hacking Incidents U.S.-based based pharmacy and supermarket chain Kroger and U.K.-based

Data breaches

Neiman Marcus Says 4.6M Affected by Data Breach

Data Breach Today

SEPTEMBER 30, 2021

Exposed Data Includes Login Credentials, Security Questions Neiman Marcus Group says it is notifying 4.6 million of its online customers who are affected by a data breach that occurred in May 2020. The data includes personally identifiable data, payment and gift cards, online account credentials and security questions.

Data breaches

Data breaches Security IT

Ransomware Prevention and Recovery

Learn how to protect your business data from the most disruptive malware currently in existence. This whitepaper will help you avoid becoming the victim of a data breach and ensure business continuity. It discusses defense best practices and protection solutions to help you keep your data safe.

Ransomware

Weasel Words Rule Too Many Data Breach Notifications

Data Breach Today

JANUARY 25, 2024

The Security of Our Customers' Data Is Our Top Priority' - Really? Does a day ever go by without a fresh set of data breach notifications? Some organizations' breach notifications at least signal respect for the recipient.

Data breaches

Data breaches Marketing Security IT

ITRC: Lack of Details in Data Breach Notices on the Rise

Data Breach Today

APRIL 24, 2023

Lee Shares 2023 Q1 Data Breach Report Highlights According to findings from the Identity Theft Resource Center's 2023 Q1 Data Breach Report, the number of publicly reported data compromises decreased, but the number of data breaches with no actionable information about the root cause of the compromise grew.

Data breaches

Marriott Pays $52M to Settle US States Data Breach Litigation

Data Breach Today

OCTOBER 9, 2024

Hotel Chain Also Settles with Federal Trade Commission The world's largest hotel chain agreed Wednesday to pay $52 million and agree to two decades of third-party monitoring of its cybersecurity program to settle a rash of data breaches affecting millions of guests. The multi-million payout is part of a settlement reached with 50 U.S.

Data breaches

Data breaches Cybersecurity IT

Court Orders Optus to Release Data Breach Report to Lawyers

Data Breach Today

MAY 27, 2024

Class Action Law Firms Seek Access to Commissioned Deloitte Report Into Mega-Breach The Federal Court of Australia has rejected a request from telecommunications giant Optus to keep private a detailed digital forensic investigation report conducted by Deloitte into the massive data breach it suffered in 2022, exposing private information pertaining (..)

Data breaches

Data breaches Access IT

Recovering from a Cyber Attack

Speaker: Mike Cramer, Director of HIPAA & Data Security at The Word & Brown Companies

If your organization stores data and is connected to the Internet, it is not a matter of “if” a cyber-security incident will happen, but “when.” IBM reported that the total damage from data breaches in 2021 was 4.24M USD (up from 3.86M USD in 2020), easily the highest aggregated amount on record.

Data breaches

Data Breach Roundup: Attempted Extortion Attack on Dragos

Data Breach Today

MAY 11, 2023

Also: Twitter Hacker Pleads Guilty, Seoul National University Hospital and Sysco In this week's data breach, the spotlight was on Dragos, a guilty plea from a Twitter hacker and cryptocurrency thief and North Korean hackers. Also, Sysco, a Ukrainian border truck queuing system and an update on Western Digital.

Data breaches

Data breaches Encryption

Australian Telecom Watchdog Sues Optus Over 2022 Data Breach

Data Breach Today

MAY 24, 2024

Telecom Company Also Faces OAIC Investigation and Potentially Millions in Fines The Australian Communications and Media Authority says it has filed proceedings against Optus in a federal court as the company failed to protect sensitive customer data during a data breach in September 2022.

Data breaches

Data breaches Communications IT

Leading Nuclear Energy Testing Lab Suffers Major Data Breach

Data Breach Today

NOVEMBER 21, 2023

Hacktivists Leak Sensitive Employee Information From Idaho National Laboratory The hacktivist group SiegedSec has taken responsibility for a massive data breach targeting Idaho National Laboratory, a leading nuclear energy testing lab.

Data breaches

Data breaches Access IT

Feds Levy First-Ever HIPAA Fine for Ransomware Data Breach

Data Breach Today

OCTOBER 31, 2023

Massachusetts Management Firm to Pay $100,000, Monitor HIPAA Compliance for 3 Years A Massachusetts-based medical management firm holds the dubious honor of being the first ransomware victim fined for a data breach by the Department of Health and Human Services.

Data breaches

Data breaches Ransomware Compliance

Software Composition Analysis: The New Armor for Your Cybersecurity

Speaker: Blackberry, OSS Consultants, & Revenera

64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. Software is complex, which makes threats to the software supply chain more real every day. In the U.S. alone, cyber losses totaled $10.3 billion in 2022.

Cybersecurity

FTC Expands Financial Data Breach Reporting Requirements

Data Breach Today

OCTOBER 27, 2023

Non-Banking Institutions Will Be Required to Report Breaches Under Revised Rule. Consumer lenders such as mortgage brokers, auto dealers and payday lenders must soon report data breaches to the Federal Trade Commission under a revised regulation that mandates public disclosure.

Data breaches

FCC Approves Major Updates to Data Breach Notification Rules

Data Breach Today

DECEMBER 13, 2023

New FCC Disclosure Rules Cover All Personal Information of Telecom Customers The FCC approved new guidelines that note how data breaches "have only grown in frequency and severity" since the commission adopted its privacy protection policies 16 years ago.

Data breaches

Data breaches Privacy Security IT

How 2023 Broke Long-Running Records for Health Data Breaches

Data Breach Today

FEBRUARY 1, 2024

health data breaches - with 112.5 Will 2024 be another banner year for health data compromises? What Will 2024 Be Like If the Healthcare Sector Doesn't Step Up? Thanks to the massive Anthem hack, for nearly a decade 2015 has been the record year for U.S. million people affected. But 2023 shattered that record, big-time.

Data breaches

Official Slams Aussie Firms for Data Breach Reporting Delays

Data Breach Today

SEPTEMBER 5, 2023

Information Commissioner Urges Organizations to Accelerate Breach Notifications Australia's information commissioner has urged organifzations to quicken the process of notifying those affected by data breaches instead of spending months analyzing each incident.

Data breaches

Data breaches Risk IT

How to Effectively Equip Your IG Program for the Perilous Journey Into the Future

Speaker: Andrew Ysasi, Vice President of Advocacy for Vital Records Control, President of IG GURU®, MS, FIP, FIIM, CIPM, CIGO, CISM, PMP, CRM, IGP, CIP, CSAP

An information governance framework shows how an organization manages specific data, like personal information, as well as how this information is stored. Over the past couple of years, these frameworks have proven to be ineffective and in need of updating.

Privacy

Midyear Health Data Breach Analysis: The Top Culprits

Data Breach Today

JULY 7, 2023

Latest Hacking, Vendor Incident Trends Emerging From the Federal Tally Hacking incidents, including those involving ransomware attacks or vendors, that affect tens of millions of individuals, continue to account for the majority of health data breaches reported to federal regulators so far this year.

Data breaches

Data breaches Ransomware

UK FCA Fines Equifax 11 Million Pounds for 2017 Data Breach

Data Breach Today

OCTOBER 13, 2023

Fine Imposed for Failing to Protect UK Customer Data and Misleading Britons A British financial regulator fined American credit reporting agency Equifax 11 billion pounds for its role in one of the world's largest data breaches.

Data breaches

Data breaches Military IT

Highlights of Verizon Data Breach Investigations Report 2023

Data Breach Today

JUNE 6, 2023

Report's Lead Author Shares Top Findings, Best Practices Pretexting incidents, a social engineering technique that manipulates victims into divulging information, have nearly doubled, representing 50% of all social engineering attacks, according to Verizon's 2023 Data Breach Investigations Report, which analyzed more than 16,312 security incidents. (..)

Data breaches

Data breaches Security

Elementary Data Breach Questions Remain, My Dear Capita

Data Breach Today

MAY 11, 2023

Beyond $25M in Estimated Cleanup Costs, The Game Remains Afoot for Victim Details In the annals of attempting to downplay the impact of a data breach, here's a new one: British outsourcing giant Capita says the hackers who hit it - steling data pertaining to customers, suppliers and employees - accessed "less than 0.1%

Data breaches

Data breaches Cleanup Access IT

MOVEit Health Data Breach Tally Keeps Growing

Data Breach Today

AUGUST 23, 2023

More Hacks Compromising Protected Health Info Being Reported to Regulators The tally of entities notifying federal regulators about mega health data breaches involving Clop cybercrime group hacks on Progress Software's MOVEit file transfer application keeps growing, and millions of additional individuals have been affected.

Data breaches

When Efforts to Contain a Data Breach Backfire

Krebs on Security

AUGUST 16, 2022

That same month, they also sold data on 1.4 But this history was either overlooked or ignored by Group-IB , the Singapore-based cybersecurity firm apparently hired by Banorte to help respond to the data breach. “We ask you to remove this post containing Banorte data.

Data breaches

Data breaches Sales Marketing Cybersecurity

Met Police Officers at Risk After Serious Data Breach

Data Breach Today

AUGUST 28, 2023

Scotland Yard Probes Impact of Suspected Hack Attack Against Service Provider London's Metropolitan Police Service is investigating a serious data breach that may have exposed names, ranks and photographs for potentially all 47,000 personnel, after someone gained access "unauthorized access to the IT system" of one of its suppliers.

Data breaches

Data breaches Risk Access IT

T-Mobile Investigating Claims of Massive Data Breach

Krebs on Security

AUGUST 16, 2021

Communications giant T-Mobile said today it is investigating the extent of a breach that hackers claim has exposed sensitive personal data on 100 million T-Mobile USA customers, in many cases including the name, Social Security number, address, date of birth, phone number, security PINs and details that uniquely identify each customer’s mobile (..)

Data breaches

Data breaches Access Retail Personal data

Tesla Sues 2 Former Employees Over Insider Data Breach

Data Breach Today

AUGUST 22, 2023

Whistleblower Leaks Included Information on 75,735 Current and Former Employees Tesla says it is suing two former employees for perpetrating a May data breach that exposed personal information for 75,735 current and former employees.

Data breaches

Data breaches IT

Data Breach Cost Control: Practice and Preparedness Pay Off

Data Breach Today

JULY 25, 2023

Healthcare Sector Spends Most on Cleanup, IBM's Annual Breach Study Finds A new IBM study of data breaches found that if an organization's internal team first detects a breach and the organization has well-practiced incident response plans, that organization will be able to more quickly detect and respond, which will lead to lower breach cleanup costs. (..)

Data breaches

Data breaches Cleanup

Northern Ireland Police at Risk After Serious Data Breach

Data Breach Today

AUGUST 9, 2023

Current PSNI Employees' Surnames and Locations Revealed Via Public Spreadsheet Police officers in Northern Ireland are sounding alarms over their personal safety after a data breach revealed the surnames and locations where they serve for nearly 10,000 police officers and staff.

Data breaches

Data breaches Risk

Federal Lawsuits in Fortra Health Data Breach Piling Up

Data Breach Today

MAY 22, 2023

Several Proposed Class Actions Filed Against NationsBenefits, Aetna, Others Proposed class action lawsuits are piling up over hackers' use of a vulnerability in Fortra's GoAnywhere secure file transfer and a resulting data breach affecting 3 million individuals.

Data breaches

Data breaches Access Security

Sony Investigating Potential Data Breach

Data Breach Today

SEPTEMBER 26, 2023

Two Online Threat Actors Claim Responsibility Sony is investigating an apparent leak of internal data posted onto the dark web and a criminal hacking board by separate criminal actors. Sony is saying little other than "we are currently investigating the situation, and we have no further comment at this time."

Data breaches

Data Breach Reports Rise as Supply Chain Attacks Surge

Data Breach Today

OCTOBER 8, 2021

US Breach Notification Transparency Declining, Identity Theft Resource Center Warns The number of breach reports filed by U.S. organizations looks set to break records, as breaches tied to phishing, ransomware and supply chain attacks keep surging, the Identity Theft Resource Center warns.

Data breaches

Data breaches Phishing Ransomware IT

Internet Archive Data Breach Exposes 31 Million Accounts

Data Breach Today

OCTOBER 10, 2024

Nonprofit Digital Archive Also Suffers Denial-of-Service Attacks, Defacement The nonprofit Internet Archive has been hit by hackers, who stole usernames and for 31 million accounts, including email addresses and bcrypt-hashed passwords. In recent days, the digital archive has also suffered defacement and repeat denial-of-service attacks.

Archiving

Archiving Data breaches Passwords

How to Improve Health Data Breach Response Planning

Data Breach Today

MARCH 5, 2024

Experts Offer Tips for Ironing Out Common Kinks in Incident Response The healthcare sector should have plenty of experience responding to data security incidents and breaches, especially in light of the record number of breaches reported last year. But when leaders are dealing with an incident, response plans can go awry.

Data breaches

Data breaches Security

Australia Optus 2022 Data Breach 'Not Highly Sophisticated'

Data Breach Today

JUNE 21, 2024

Hackers Exploited Coding Error, Says Australian Communications and Media Authority Hackers behind the leak of 10 million records from Australia's second-largest telecommunications carrier Optus exploited a vulnerability the company unwittingly inserted four years earlier into a web portal access control, said the Australian Communications and Media (..)

Data breaches

Data breaches Communications Access

Moneygram Money Transfer Firm Reports Customer Data Breach

Data Breach Today

OCTOBER 8, 2024

Stolen Data Includes Social Security Numbers and Details of Criminal Investigations MoneyGram Payment Systems, a Dallas-based money transfer system, said hackers who hit its infrastructure last month stole customer data, including contact details, Social Security numbers and information pertaining to criminal fraud investigations.

Data breaches

Data breaches Security IT

US SEC Approves Wall Street Data Breach Reporting Regs

Data Breach Today

MAY 17, 2024

Covered Financial Institutions Have 30 Days to Notify Customers of Data Breaches The Securities and Exchange Commission unanimously approved updated regulations for covered financial institutions requiring entities such as fund companies and investment advisers to notify customers within 30 days of a cyber incident that compromised their data.

Data breaches

Data breaches Security

Too Much Remains Unknown About Data Breaches

T-Mobile USA Investigates Possible Data Breach

Trending Sources

Health Data Breach Trends: A Mid-Year Report

Study: Average Cost of a Data Breach Rises to $4.9 Million

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Credit Union Issues Belated MOVEit Data Breach Notification

Video Game Streamer 'Twitch' Confirms Massive Data Breach

Kroger, British Airways Agree to Settle Data Breach Lawsuits

Neiman Marcus Says 4.6M Affected by Data Breach

Ransomware Prevention and Recovery

Weasel Words Rule Too Many Data Breach Notifications

ITRC: Lack of Details in Data Breach Notices on the Rise

Marriott Pays $52M to Settle US States Data Breach Litigation

Court Orders Optus to Release Data Breach Report to Lawyers

Recovering from a Cyber Attack

Data Breach Roundup: Attempted Extortion Attack on Dragos

Australian Telecom Watchdog Sues Optus Over 2022 Data Breach

Leading Nuclear Energy Testing Lab Suffers Major Data Breach

Feds Levy First-Ever HIPAA Fine for Ransomware Data Breach

Software Composition Analysis: The New Armor for Your Cybersecurity

FTC Expands Financial Data Breach Reporting Requirements

FCC Approves Major Updates to Data Breach Notification Rules

How 2023 Broke Long-Running Records for Health Data Breaches

Official Slams Aussie Firms for Data Breach Reporting Delays

How to Effectively Equip Your IG Program for the Perilous Journey Into the Future

Midyear Health Data Breach Analysis: The Top Culprits

UK FCA Fines Equifax 11 Million Pounds for 2017 Data Breach

Highlights of Verizon Data Breach Investigations Report 2023

Elementary Data Breach Questions Remain, My Dear Capita

MOVEit Health Data Breach Tally Keeps Growing

When Efforts to Contain a Data Breach Backfire

Met Police Officers at Risk After Serious Data Breach

T-Mobile Investigating Claims of Massive Data Breach

Tesla Sues 2 Former Employees Over Insider Data Breach

Data Breach Cost Control: Practice and Preparedness Pay Off

Northern Ireland Police at Risk After Serious Data Breach

Federal Lawsuits in Fortra Health Data Breach Piling Up

Sony Investigating Potential Data Breach

Data Breach Reports Rise as Supply Chain Attacks Surge

Internet Archive Data Breach Exposes 31 Million Accounts

How to Improve Health Data Breach Response Planning

Australia Optus 2022 Data Breach 'Not Highly Sophisticated'

Moneygram Money Transfer Firm Reports Customer Data Breach

US SEC Approves Wall Street Data Breach Reporting Regs

Stay Connected