IT Governance

OCTOBER 19, 2022

Welcome to our third quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance identified 285 publicly disclosed security incidents between July and September 2022, which accounted for 232,266,148 compromised records.

Data breaches 116

Data breaches Ransomware Phishing Government 116

IT Governance

NOVEMBER 3, 2023

IT Governance’s research has discovered the following for October 2023: 114 publicly disclosed security incidents. 867,072,315 records known to be breached. You’ll also be able to download each month’s data (and our sources) from the same page as the corresponding Dashboard.

Data breaches 87

Data breaches Insurance Ransomware Education 87

IT Governance

JULY 19, 2023

The scammer will try to gain your trust by claiming to be a figure of authority, such as the government or a well-known organisation. Thanks to our interactive learning and online assessment tools, you can be sure that staff engage with and understand what’s required of them to protect their sensitive information and avoid data breaches.

Phishing 90

Phishing Data breaches Education Government 90

IT Governance

OCTOBER 26, 2021

Welcome to our third quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. IT Governance discovered 266 security incidents between July and September 2021, which accounted for 185,721,284 breaches records.

Data breaches 130

Data breaches Retail Government Ransomware 130

IT Governance

JULY 11, 2022

Welcome to our second quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 237 security incidents between April and June 2022, which accounted for 99,019,967 breached records.

Data breaches 105

Data breaches Ransomware Phishing Government 105

IT Governance

JANUARY 20, 2022

Welcome to our review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 1,243 security incidents in 2021, which accounted for 5,126,930,507 breached records. The biggest data breaches of 2021.

Data breaches 144

Data breaches Ransomware Phishing Government 144

IT Governance

MAY 27, 2021

UK police forces experienced 2,386 data breaches in 2020, according to data gathered by VPNoverview. For example, the report revealed that police stations suffered 299 data breaches on average between January 2016 and April 2021.

Data breaches 128

Data breaches Data Privacy Marketing Privacy 128

IT Governance

JULY 10, 2023

Welcome to our second quarterly review of cyber attacks and data breaches for 2023. In this article, we take a closer look at the information gathered in our monthly list of security breaches , and delve into the infosec landscape over the past three months. How many records have been compromised?

Data breaches 73

Data breaches Ransomware Encryption Government 73

IT Governance

JULY 13, 2021

Welcome to our second quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. IT Governance discovered 377 security incidents between April and June 2021, which accounted for 1,224,539,395 breached records.

Data breaches 98

Data breaches Retail Ransomware Government 98

IT Governance

APRIL 12, 2023

Welcome to our first quarterly review of security incidents for 2023, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. Overview IT Governance discovered 310 security incidents between January and March 2023, which accounted for 349,171,305 breached records.

Data breaches 59

Data breaches Ransomware Government Encryption 59

Hunton Privacy

JUNE 22, 2020

On July 1, 2020, amendments to Vermont’s data breach notification law, signed into law earlier this year, will take effect along with Vermont’s new student privacy law. Security Breach Notice Act.

Data breaches 107

Data breaches Privacy Education Data Privacy 107

erwin

OCTOBER 31, 2019

Do you know where your data is? What data you have? Add to the mix the potential for a data breach followed by non-compliance, reputational damage and financial penalties and a real horror story could unfold. s Information Commissioner’s Office had levied against both Facebook and Equifax for their data breaches.

Government 105

Government Security Metadata Data breaches 105

The Last Watchdog

DECEMBER 10, 2018

Sadly, data breaches often occur at this time of year. Recently we’ve seen major news stories about breaches at Starwood Hotels and Quora. Related podcast: The need to lock down unstructured data. What exactly makes data sensitive? Here’s a simple definition: if accessed by an adversary, would create a liability.

Government 149

Government Data breaches Unstructured data Privacy 149

IT Governance

OCTOBER 9, 2018

We’ve talked a lot recently about the financial effects of data breaches and how you should respond to incidents , but that still leaves the question of how data breaches occur. This blog looks at some real-world examples of some of the most common causes of data breaches and explains how they occurred.

Data breaches 96

Data breaches Ransomware Phishing Retail 96

Collibra

JUNE 21, 2023

Businesses everywhere are seeking ways to leverage LLMs as fast as governments are talking about ways to regulate them. How do organizations ensure the quality, integrity, and ethical handling of the data used to train and operate AI systems? What you need is a governance model for AI. You need AI governance.

Government 88

Government IT Risk Privacy 88

Hunton Privacy

DECEMBER 20, 2023

However, the Commissioner goes on to state that the majority of his comments currently remain unaddressed, including with regards the definition of high risk processing. The Commissioner’s original response was published in March 2023.

GDPR 72

GDPR Data breaches Personal data Government 72

IT Governance

APRIL 23, 2019

The Supreme Court has given Morrisons permission to appeal a ruling that found the supermarket liable for a data breach caused by a malicious insider. This incident shows how complex liability can be regarding data breaches. Why have the courts found Morrisons liable?

Data breaches 82

Data breaches Insurance GDPR Compliance 82

IBM Big Data Hub

JANUARY 25, 2023

In our last blog , we introduced Data Governance: what it is and why it is so important. In this blog, we will explore the challenges that organizations face as they start their governance journey. Organizations have long struggled with data management and understanding data in a complex and ever-growing data landscape.

Government 52

Government Data Privacy Compliance Access 52

Krebs on Security

SEPTEMBER 13, 2023

USDoD claimed they grabbed the data by using passwords stolen from a Turkish airline employee who had third-party access to Airbus’ systems. ” The prevalence of RedLine and other info-stealers means that a great many consequential security breaches begin with cybercriminals abusing stolen employee credentials.

Passwords 276

Passwords Authentication Sales Data breaches 276

DLA Piper Privacy Matters

SEPTEMBER 10, 2021

The government has today published its eagerly awaited Consultation Paper on Reforms to the UK Data Protection Regime – ‘Data: A New Direction’ (“ Consultation Paper ”), setting out the specific areas for regulatory reform of the UK’s data protection regime. Reducing barriers to responsible innovation.

Government 104

Government Paper Personal data GDPR 104

Hunton Privacy

APRIL 3, 2018

to enact a data breach notification law. The Alabama Data Breach Notification Act of 2018 (S.B. Key Provisions of the Alabama Data Breach Notification Act of 2018: The law applies to “covered entities” and their “third-party agents.” On March 28, 2018, Alabama became the final state in the U.S.

Data breaches 72

Data breaches Encryption Insurance Risk 72

Data Protection Report

JUNE 22, 2022

UK GDPR Reform: government publishes response to consultation – likely to form basis of forthcoming UK Data Reform Bill. The Department for Culture, Media and Sport (DCMS) has finally published the UK government’s long-awaited response to the consultation on the future of the UK data protection regime.

GDPR 144

GDPR Government Personal data Risk 144

Data Protection Report

AUGUST 27, 2018

This is the Data Protection Report’s third blog in a series of blogs that will break down the major elements of the CCPA which will culminate in a webinar on the CCPA in October. This blog focuses on the CCPA’s broad definition of Personal Information. While the definition of PI is sweeping, the Act does set out several carve outs.

GDPR 40

GDPR Privacy Data breaches Sales 40

Hunton Privacy

JANUARY 6, 2022

In its report, the JPC recommended a phased approach to implementing the law, beginning with the appointment of various government officers, such as the Data Protection Authority (“DPA”), with full implementation of the law to be completed within 24 months. Most provisions of the Bill still apply only to personal data.

Personal data 129

Personal data Data breaches Government GDPR 129

Hunton Privacy

JUNE 14, 2018

Attorney General Notification: If an entity must notify Colorado residents of a data breach, and reasonably believes that the breach has affected 500 or more residents, it must also provide notice to the Colorado Attorney General.

Data breaches 65

Data breaches Security Passwords Military 65

Hunton Privacy

MAY 24, 2018

On April 11, 2018, Arizona amended its data breach notification law (the “amended law”). The amended law also broadens the definition of personal information and requires regulatory notice and notice to the consumer reporting agencies (“CRAs”) under certain circumstances.

Data breaches 53

Data breaches Authentication Passwords Insurance 53

Collibra

OCTOBER 22, 2020

Most data and IT leaders know that their organizations need data governance to stay afloat in the current market landscape. In order to implement data governance, your organization needs to see that there is value in embarking on the journey. How to build a data governance business case.

Government 59

Government Marketing Communications Risk 59

IT Governance

OCTOBER 15, 2018

Under the EU’s GDPR (General Data Protection Regulations), organisations are required to report certain types of personal data breach to the relevant supervisory body – the ICO (Information Commissioner’s Office) in the UK – within 72 hours of becoming aware of the breach. Definition of a personal data breach.

Data breaches 53

Data breaches Personal data GDPR Communications 53

DLA Piper Privacy Matters

JULY 30, 2019

It’s summer, and life’s a breach. A data breach, that is. It’s your service provider’s breach, but it involves your (more likely, your customer’s) data. So put down the beach reading, for some breach reading. Who “owns” a data breach?

Data breaches 45

Data breaches Cybersecurity Financial Services Risk 45

Hunton Privacy

AUGUST 22, 2023

reports that in early August 2023, the Indian Parliament passed the Digital Personal Data Protection Act (the “Act”), bringing to a close a 5-year process to enact an omnibus data privacy law in India. The Act was ratified by the President of India and will come into effect once notified by the Government.

Personal data 90

Personal data Data breaches GDPR Government 90

erwin

DECEMBER 20, 2018

The driving factors behind data governance adoption vary. Whether implemented as preventative measures (risk management and regulation) or proactive endeavors (value creation and ROI), the benefits of a data governance initiative is becoming more apparent. Defining Data Governance. to Data Governance 2.0

Government 40

Government Financial Services GDPR Data breaches 40

Data Protection Report

JANUARY 21, 2020

Out of the six reforms proposed in the Paper, those around mandatory breach notification and increased powers to curb doxxing (the disclosure of personal data online without the consent of the target individual) were the focus of the discussion. A definition is needed for “sensitive personal data” in line with international standards.

Government 77

Government Personal data Paper Data Privacy 77

IBM Big Data Hub

FEBRUARY 5, 2024

For federal and state governments and agencies, identity is the crux of a robust security implementation. Numerous individuals disclose confidential, personal data to commercial and public entities daily, necessitating that government institutions uphold stringent security measures to protect their assets.

Security 93

Security Authentication Compliance Access 93

Security Affairs

JUNE 1, 2021

Just recently, the group has published a stolen data allegedly belonging to the Mexican Government which still remains available for sale today, and possibly becoming the first cybercriminal group that has touched a major state in Latin America on such a level. Mexican Government data is published for sale.

Sales 79

Sales Ransomware Government GDPR 79

Krebs on Security

MAY 19, 2020

In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection of stolen data in history.” “ Sanixer “) from the Ivano-Frankivsk region of the country.

Passwords 337

Passwords Authentication Sales Data breaches 337

Security Affairs

SEPTEMBER 3, 2023

ransomware builder used by multiple threat actors Cisco fixes 3 high-severity DoS flaws in NX-OS and FXOS software Cybercrime Unpacking the MOVEit Breach: Statistics and Analysis Cl0p Ups The Ante With Massive MOVEit Transfer Supply-Chain Exploit FBI, Partners Dismantle Qakbot Infrastructure in Multinational Cyber Takedown U.S.

Security 105

Security Ransomware Data breaches IoT 105

IT Governance

JANUARY 9, 2024

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. Publicly disclosed data breaches and cyber attacks: in the spotlight Hathaway breached, 41.5 Data breached: 41,500,000 records. They accessed 41.5

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75