Analysis: 2020 Health Data Breach Trends

Data Breach Today

Ransomware, Phishing Incidents, Vendor Hacks Prevail Hacking incidents, including ransomware and phishing attacks, as well as security incidents involving vendors dominated the federal tally of major health data breaches in 2020

Top data breaches of 2020 – Security Affairs

Security Affairs

Data from major cyber security firms revealed that tens of billion records have been exposed in data breaches exposed in 2020. Hackers offered for sale on the dark web data belonging to 538 million Weibo users, including 172 million phone numbers.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Ubiquiti discloses a data breach

Security Affairs

American technology company Ubiquiti Networks is disclosed a data breach and is notifying its customers via email. The company is not aware of any access to any databases that were containing user data. The post Ubiquiti discloses a data breach appeared first on Security Affairs.

Defense Department Agency Reports Data Breach

Data Breach Today

Defense Information Systems Agency Has a Security Mission A U.S.

Data Breaches: ShinyHunters' Dominance Continues

Data Breach Today

Prolific Cybercrime Group Recently Tied to Breaches of E-Commerce and Dating Sites In 2020, a cybercrime operation known as ShinyHunters breached nearly 50 organizations, security researchers say.

How Not to Acknowledge a Data Breach

Krebs on Security

I’m not a huge fan of stories about stories, or those that explore the ins and outs of reporting a breach. But occasionally I feel obligated to publish such accounts when companies respond to a breach report in such a way that it’s crystal clear they wouldn’t know what to do with a data breach if it bit them in the nose, let alone festered unmolested in some dark corner of their operations. Nor did the statement even acknowledge a security incident.

Wind River Systems Investigating Possible Data Breach

Data Breach Today

Company: Social Security Numbers and Other Data May Have Been Exposed Embedded software vendor Wind River Systems is investigating a security incident within its internal network, according to a notification filed with California authorities.

Data Breaches, Class Actions and Ambulance Chasing

Troy Hunt

This post has been brewing for a while, but the catalyst finally came after someone (I'll refer to him as Jimmy) recently emailed me regarding the LOQBOX data breach from 2020. As far as breaches go, it was a bit of a non-event. How many places did his personal data then flow to?

Web developers SitePoint discloses a data breach

Security Affairs

The website, and publisher of books, courses and articles for web developers, SitePoint discloses a data breach that impacted 1M users. The company has disclosed a data breach and notified its users via email. The total volume of data available for sale is composed of 368.8

Data Breach Settlement Calls for Enhanced Security Measures

Data Breach Today

million settlement of a class action lawsuit against Banner Health stemming from a 2016 data breach. The settlement spells out steps the Phoenix-based organization must take to improve information security Court Grants Final Approval of $8.9

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

Security Affairs

T-Mobile has disclosed a data breach that exposed customers’ network information (CPNI), including phone numbers and calls records. T-Mobile has disclosed a data breach exposing customers’ account’s information.

Barnes & Noble Experiences Major Data Breach

Adam Levin

Barnes & Noble has confirmed a data breach following a cyberattack that took many of their services offline. . The email also indicated that customer transaction histories may have been compromised, meaning that information about their purchases may be included in the breached data.

Fragomen law firm data breach exposed Google employee’s data

Security Affairs

Immigration law firm Fragomen has disclosed a data breach that exposed current and former Google employees’ personal information. These services are available through IDX, the data breach and recovery services expert.”

LinkedIn confirmed that it was not a victim of a data breach

Security Affairs

LinkedIn has formally denied that the recently disclosed data leak was caused by a security breach, data were obtained via web scraping. This data can be used by threat actors to conduct multiple malicious activities, including: phishing/spear-phishing attacks.

Sequoia Capital Venture Capital firm discloses a data breach

Security Affairs

Sequoia Capital, one of the most prominent venture capital firms that focus on the technology industry, discloses a data breach. ” reported the security firm Axios. ” If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

More Health Data Breaches Tied to Vendor Incidents

Data Breach Today

Hacker Attacks Against Accellion, Other Vendors Expose Patient Data The list of healthcare organizations affected by recent vendor security incidents - including the attack against Accellion - continues to grow

Carnival Announces Data Breach Following Ransomware Attack

Adam Levin

Carnival Corporation, the largest cruise ship company in the world, announced that it had experienced a data breach following a ransomware attack on their systems. The post Carnival Announces Data Breach Following Ransomware Attack appeared first on Adam Levin.

Data Breach: Turkish legal advising company exposed over 15,000 clients

Security Affairs

Data Breach: WizCase team uncovered a massive data leak containing private information about Turkish Citizens through a misconfigured Amazon S3 bucket. While Amazon offers the necessary tools to secure their services, Inova has not implemented these measures properly.

Equifax's Data Breach Costs Hit $1.4 Billion

Data Breach Today

Massive 2017 Breach Continues to Bite the Credit Reporting Giant's Bottom Line Equifax has reported a loss in its latest quarter due to ongoing incident response, legal, investigative and corporate information security overhaul costs resulting from its 2017 data breach. billion as a result of the massive breach

GoDaddy discloses a data breach, web hosting account credentials exposed

Security Affairs

GoDaddy has been notifying its customers of a data breach, threat actors might have compromised their web hosting account credentials. GoDaddy has been notifying its customers of a data breach, attackers might have compromised users’ web hosting account credentials.

Staples discloses data breach exposing customer order data

Security Affairs

Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. The office retail giant sent out a data breach notification letter to the impacted customers, the incident took place around September 2.

Threat actor is selling 368.8 million records from 26 data breaches

Security Affairs

A data breach broker is selling user records allegedly from twenty-six data breaches on a hacker forum. Security experts from Bleeping Computer reported that a threat actor is selling user records allegedly stolen from twenty-six companies on a hacker forum.

T-Mobile Faces Yet Another Data Breach

Threatpost

Breach Hacks Mobile Security CPNI customer account information customer proprietary network information cyberattack data breach mobile phone numbers t-mobile usa WirelessThe cyberattack incident is the wireless carrier's fourth in three years.

Lessons to Learn From Shopify Data Breach

Data Breach Today

Security Experts Call for 'Zero Trust' Approach, Enhanced IAM Shopify's announcement this week that two employees inappropriately accessed transactional data from 200 of the merchants that use its e-commerce platform demonstrates the importance of taking a "zero trust" approach to security and improving identity and access management capabilities, security experts say

UK ICO fines hotel chain giant Marriott over data breach

Security Affairs

The UK Information Commissioner’s Office fined US hotels group Marriott over the 2018 data breach that affected millions of customers worldwide. million) for multiple data breaches suffered by the company since 2018 that exposed the personal information of its customers.

Travel leisure company Carnival Corporation discloses data breach

Security Affairs

The world’s largest travel leisure company Carnival Corporation discloses a data breach that took place last year and which exposed the personal information of its customers. ” reads the data breach notification.

MGM Data Breach Affects Over 10 Million Customers

Adam Levin

MGM Resorts confirmed the leaked data as being the result of a data breach that occurred last year. We are confident that no financial, payment card or password data was involved in this matter.”. Data Security Data breach Technology featured data breach hotel mgm

Marriott discloses data breach impacting up to 5.2 Million guests

Security Affairs

Marriott disclosed a new security breach detected at the end of February 2020 that could impact up to 5.2 Marriott International discloses a data breach that exposed the personal information of roughly 5.2 The post Marriott discloses data breach impacting up to 5.2

Under GDPR, UK Data Breach Reports Quadruple

Data Breach Today

After Privacy Law Went Into Full Effect, Data Security Complaints Doubled One year after Europe's tough new GDPR privacy law went into full effect last May, authorities in Britain have seen the number of annual data breach notifications more than quadruple. Meanwhile, the number of data protection complaints filed by Europeans has doubled

A Tale of 2 Health Data Breaches: Persistent Challenges

Data Breach Today

Protecting Legacy Systems, Email Proves Difficult for Many Two recently reported health data breaches illustrate persistent security challenges - defending against ransomware attacks as well as unauthorized access to email - that sometimes can expose years' worth of data

Vertafore data breach exposed data of 27.7 million Texas drivers

Security Affairs

million Texas drivers has been exposed in a data breach caused by a human error. The company disclosed this security breach this week, data was stored on an unsecured external storage service and they were accessed by an external party.

Experian South Africa discloses data breach, 24 million customers impacted

Security Affairs

The South African branch of consumer credit reporting agency Experian disclosed a data breach that impacted 24 million customers. The South African branch of consumer credit reporting agency Experian disclosed this week a data breach that impacted 24 million customers.

A data breach broker is selling account databases of 17 companies

Security Affairs

A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. The threat actor is advertising the stolen data since October 28 on a hacker forum.

Reading the 2020 Cost of a Data Breach Report

Security Affairs

2020 Cost of a Data Breach Report: the global total cost of a data breach averaged $3.86 This year the researchers analyzed 524 breaches that occurred between August 2019 and April 2020, in organizations of all sizes, across 17 geographies and 17 industries.

Canon publicly confirms August ransomware attack and data breach

Security Affairs

Canon finally confirmed that it has suffered a ransomware attack in early August that resulted in the theft of data from its servers. Canon has finally confirmed that it was the victim of a ransomware attack in early August and that the threat actors also stole data from its servers.

Virgin Media disclose data breach, over 900,000 Customers impacted

Security Affairs

Virgin Media discloses a data breach that exposed the personal information of roughly 900,000 of its customers. Virgin Media discloses a data breach that exposed the personal information of approximately 900,000 customers (names, home, and email addresses and phone numbers ).

Havenly discloses data breach, 1.3M accounts available online

Security Affairs

Havenly, a Denver-Based company, that realized an interior designer marketplace has disclosed a data breach that impacted 1.3 The leaked records included a login name, full name, MD5 hashed password, email address, phone number, zip, and other data related.

Millions of travelers of several airlines impacted by SITA data breach

Security Affairs

This week the company announced it has suffered a highly sophisticated, hackers had access to certain passenger data stored on servers of SITA Passenger Service System (PSS). The total number of travelers impacted in the security breach is still unknown.

Healthcare giant Magellan Health discloses data breach after ransomware attack

Security Affairs

” reads the data breach notice issued by the company. As the investigation unveiled, the threat actors behind the ransomware attack were able to steal and exfiltrate “a subset of data from a single Magellan corporate server,” including sensitive personal information.

Data Breaches Tracker monitor unsecured ElasticSearch servers online

Security Affairs

Cybersecurity research at WizCase, an online security and privacy portal, built a tool to track accessible ElasticSearch servers on the internet. As it’s always hard to figure out the amount of data exposed due to misconfiguration, here the tool: [link].