Ransomware + Exfiltration + Leaks = Data Breach

Data Breach Today

Data-Leaking Extortionists' Revised Playbook Goes Way Beyond Ransomware Ransomware-wielding attackers continue to pummel organizations.

Data Breach Reports Fall 45% in UK

Data Breach Today

Are Organizations Failing to Spot Breaches, or to Report Them, as Required by GDPR? s data privacy watchdog has continued to decline, recently plummeting by nearly 40%. The number of cybersecurity incidents reported to the U.K.'s

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

UK Data Breach Reports Decline

Data Breach Today

As GDPR Hits Second Anniversary, Regional Reporting Variations Continue Britain's privacy watchdog reports it received 19% fewer data breach notifications in the first quarter than in the same period last year.

Health Data Breach Tally Surges

Data Breach Today

Victim Count in Magellan Health's April Ransomware Attack Still Climbing Why has the tally of major health data breaches - and the number of individuals affected - spiked in recent weeks? Here's an analysis of the latest trends

Dunkin' Data Breach Settlement Paves the Way for More Suits

Data Breach Today

Donut Shop Company Agrees to Issue Refunds, Pay Fines Dunkin' Brands' settlement with the New York state attorney general of a lawsuit tied to a 5-year-old data breach affecting its Perks rewards cardholders could open the door to suits by other states - as well as customers

Defense Department Agency Reports Data Breach

Data Breach Today

Defense Department agency that's responsible for providing secure communications and IT equipment for the president and other top government officials says a data breach of one of its systems may have exposed personal data, including Social Security numbers

Health Data Breach Trends: A Mid-Year Assessment

Data Breach Today

Biggest Incidents Have a Wide Variety of Causes What major health data breach trends emerged in the first half of 2020? Here's a rundown of the latest statistics - plus an analysis by experts

Morgan Stanley Hit With $5 Million Data Breach Suit

Data Breach Today

Poor Procedures for Discarding Old Equipment Led to Breach, Lawsuit Alleges A $5 million lawsuit seeking class action status has been filed against Morgan Stanley, claiming the financial organization failed to properly safeguard personally identifiable information when the company discarded old computer equipment.

How Not to Acknowledge a Data Breach

Krebs on Security

I’m not a huge fan of stories about stories, or those that explore the ins and outs of reporting a breach. But occasionally I feel obligated to publish such accounts when companies respond to a breach report in such a way that it’s crystal clear they wouldn’t know what to do with a data breach if it bit them in the nose, let alone festered unmolested in some dark corner of their operations.

Carnival Announces Data Breach Following Ransomware Attack

Adam Levin

Carnival Corporation, the largest cruise ship company in the world, announced that it had experienced a data breach following a ransomware attack on their systems. The post Carnival Announces Data Breach Following Ransomware Attack appeared first on Adam Levin.

Staples discloses data breach exposing customer order data

Security Affairs

Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. The office retail giant sent out a data breach notification letter to the impacted customers, the incident took place around September 2.

Former Uber CSO Charged With Covering Up 2016 Data Breach

Data Breach Today

Department of Justice has charged former Uber CSO Joseph Sullivan with obstruction of justice for allegedly covering up the 2016 hack of the ride-sharing service, which compromised sensitive data for 57 million Uber passengers and drivers

Analysis: Verizon's Latest Data Breach Investigation Report

Data Breach Today

Verizon's Data Breach Investigations Report 2020 highlights the leading causes of breaches last year, including credential theft, phishing, ransomware as well as issues linked to cloud implementations and web applications.

Data Breaches Exposes Vets, COVID-19 Patients

Threatpost

Social engineering and employee mistakes lead to breach Veteran's Administration and the National Health Service. Breach Cloud Security Hacks coronavirus covid-19 patients data breach hack internal tool national health service server mistake Veteran's Administration veterans wales

Marriott Suffers Another Massive Data Breach

Data Breach Today

Million Customers' Personal Details Hotel giant Marriott, which in 2018 disclosed that it had suffered one of the worst data breaches in history, is now warning that it suffered a new breach earlier this year that exposed personal details - although not payment card information - for 5.2 Employees' Credentials Used to Steal 5.2

LabCorp Shareholder Sues Company Over Data Breaches

Data Breach Today

CIO Is Among a Dozen LabCorp Executives, Directors Named in Lawsuit A shareholder has filed a lawsuit against LabCorp and 12 of its executives and directors - including the medical testing company's CIO - over two data breaches, including the 2019 breach of one of its vendors, American Medical Collection Agency, which affected millions of patients

EasyJet Data Breach Exposes 9 Million Customers' Details

Data Breach Today

European Budget Airline Says Payment Card Data Stolen, But Only for 2,200 Customers European budget airline EasyJet says it suffered a data breach that exposed 9 million customers' personal details. While no passport details were exposed, the company's ongoing investigation has also found that attackers "accessed" a small number - just 2,208 - of customers' payment card details

Health Data Breach Tally Spikes in Recent Weeks

Data Breach Today

Will Hacking Incidents, Other Breaches Continue to Rise During COVID-19 Pandemic? The total number of health data breaches - and individuals affected - on the 2020 tally has more than doubled in recent weeks. Here are the details

To Survive a Data Breach, Create a Response Playbook

Data Breach Today

Experts Detail Essential Systems and Procedures Every Organization Needs Now Surviving a data breach requires having a plan, and experts say such plans must be continually tested, practiced and refined.

Marriott Hit With Class-Action Data Breach Lawsuit

Data Breach Today

UK Claim Seeks Damages Under GDPR Over Long-Running Starwood Reservation System Hack Marriott faces a new class-action lawsuit, filed in Britain, over the breach of its Starwood guest reservation system.

Toyota Reveals a Second Data Breach

Data Breach Today

Hackers Targeted Servers Storing Data on 3.1 has reported its second data breach in the past five weeks. The latest incident, revealed Friday, may have exposed data on as many as 3.1 Million Customers Toyota Motor Corp. million customers

Equifax's Data Breach Costs Hit $1.4 Billion

Data Breach Today

Massive 2017 Breach Continues to Bite the Credit Reporting Giant's Bottom Line Equifax has reported a loss in its latest quarter due to ongoing incident response, legal, investigative and corporate information security overhaul costs resulting from its 2017 data breach. billion as a result of the massive breach

OnDemand Webinar | Practical Steps to Determine Your Data Breach Risk

Data Breach Today

Understanding Data Breach Myth Vs. Reality. Watch this webinar OnDemand and learn three of the most common data breach myths

Data Breach Settlement Has an Unusual Provision

Data Breach Today

No 'Global Cap' on Payment of Claims A preliminary settlement in a class action data breach lawsuit against Iowa Health System - which does business as UnityPoint Health - contains an unusual provision that could prove quite costly

MGM Data Breach Affects Over 10 Million Customers

Adam Levin

MGM Resorts confirmed the leaked data as being the result of a data breach that occurred last year. We are confident that no financial, payment card or password data was involved in this matter.”. Data Security Data breach Technology featured data breach hotel mgm

Health Data Breach Tally: Trends in 2019

Data Breach Today

Hacking Attacks, Business Associate Incidents Were Common The federal tally of health data breaches shows that hacking attacks and incidents involving business associates dominated this year.

Health Data Breach Tally Update: 2020 Trends

Data Breach Today

Email-Related Incidents Continue to Dominate, But Other Breaches Still Popping Up Hacking incidents involving email appear to be the most common type of major health data breach being reported to federal regulators so far in 2020.

Massive Freepik Data Breach Tied to SQL Injection Attack

Data Breach Today

Millions of Email Addresses, Hashed Passwords Leaked Freepik Co. says an SQL injection attack led to the leak of 8.3 million email addresses and 3.7 million hashed passwords for users of its Freepik graphic resources app and Flaticon icon database platform

Health Data Breaches: 3 Lessons Learned

Data Breach Today

Insights From Major Healthcare Sector Breaches and Cyberattacks The healthcare sector has had plenty of significant data breaches so far this year. What can be learned from organizations' experiences? Here are three key lessons

GDPR: Data Breach Notification 101

Data Breach Today

Brian Honan of BH Consulting on When to Notify - or Not Since the EU's new GDPR privacy law came into effect in May 2018, one challenge for organizations that suffer a breach is knowing whether or not they must report it to authorities, says Brian Honan, president and CEO of BH Consulting in Dublin

Under GDPR, UK Data Breach Reports Quadruple

Data Breach Today

After Privacy Law Went Into Full Effect, Data Security Complaints Doubled One year after Europe's tough new GDPR privacy law went into full effect last May, authorities in Britain have seen the number of annual data breach notifications more than quadruple. Meanwhile, the number of data protection complaints filed by Europeans has doubled

Target Sues Insurer Over 2013 Data Breach Costs

Data Breach Today

in an attempt to recoup money it spent to replace payment cards as part of settlements over the retailer's massive 2013 data breach. Lawsuit Claims Insurer Owes Retailer for Coverage of Card Replacement Costs Target has filed a lawsuit against its long-time insurer, ACE American Insurance Co., Find out how much money the company is seeking

A Summer of Data Breach Discontent

Data Breach Today

Ransomware Attacks, Vendors Mishaps Are Top Culprits in Healthcare Data Breach Drama When we look at many of the biggest healthcare data breaches reported so far this summer, two big culprits pop out: ransomware attacks and vendor mishaps.

Cathay Pacific Airlines Fined Over Data Breach

Data Breach Today

UK's ICO Issues Largest Penalty Possible Under Country's Older Data Privacy Laws The U.K. Information Commissioner's Office has fined Cathay Pacific Airways over a data breach that lasted four years and exposed the personal information of over 9 million passengers and customers, including 111,000 British citizens.

Radisson Suffers Global Loyalty Program Data Breach

Data Breach Today

Hotel Giant Has Yet to Disclose Total Number of Affected Victims Radisson Hotel Group has suffered a data breach that resulted in the theft of data for its global loyalty program members. The company, which operates 1,400 hotels, says the breach touched data for "less than 10 percent" of all Radisson Rewards members, but it hasn't released a victim count

Ransomware Gangs Go (Lady) Gaga for Data Breaches

Data Breach Today

Extortionists Exfiltrating Data Before Crypto-Locking Systems Many ransomware gangs hell-bent on seeing a criminal payday have now added data-exfiltration to their shakedown arsenal. Gangs' extortion play: Pay us, or we'll dump stolen data. One massive takeaway is that increasingly, ransomware outbreaks also are data breaches, thus triggering breach-notification rules

Data Breach Notification: California Targets 'Loopholes'

Data Breach Today

Marriott's Starwood Mega-Breach Drives Data Protection Update Driven by Marriott's Starwood mega-breach, California lawmakers are pushing legislation that would expand the state's pioneering data breach notification requirements to include breaches of biometric data and all types of government identification numbers, including passports

Health Data Breach Update: What Are the Causes?

Data Breach Today

Phishing Still a Major Culprit, But Other Challenges Emerge Phishing scams continue to be a leading cause of health data breaches so far this year. But the theft of unencrypted laptops led to the biggest breach reported in 2020, and an insider breach involving a physician exposed data on thousands of patients

Health Data Breach Tally Update: Top Causes

Data Breach Today

An Analysis of the Latest Trends - and What's Ahead Hacker attacks, IT mishaps, and vendor errors are among the top causes of the largest health data breaches added to the official federal tally so far this year. Here's an update

Health Data Breach Tally: Ransomware Proliferates

Data Breach Today

Here's An Update on Additions to the 'Wall of Shame' Ransomware attacks are among the largest incidents added to the federal tally of major health data breaches in recent weeks. Attacks on a variety of clinics affected a total of more than 1 million individuals