Analysis: 2020 Health Data Breach Trends

Data Breach Today

Ransomware, Phishing Incidents, Vendor Hacks Prevail Hacking incidents, including ransomware and phishing attacks, as well as security incidents involving vendors dominated the federal tally of major health data breaches in 2020

Top data breaches of 2020 – Security Affairs

Security Affairs

Data from major cyber security firms revealed that tens of billion records have been exposed in data breaches exposed in 2020. Hackers offered for sale on the dark web data belonging to 538 million Weibo users, including 172 million phone numbers.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Ubiquiti discloses a data breach

Security Affairs

American technology company Ubiquiti Networks is disclosed a data breach and is notifying its customers via email. The company is not aware of any access to any databases that were containing user data. The post Ubiquiti discloses a data breach appeared first on Security Affairs.

T-Mobile data breach: CPNI (Customer Proprietary Network Information) exposed

Security Affairs

T-Mobile has disclosed a data breach that exposed customers’ network information (CPNI), including phone numbers and calls records. T-Mobile has disclosed a data breach exposing customers’ account’s information.

How Not to Acknowledge a Data Breach

Krebs on Security

I’m not a huge fan of stories about stories, or those that explore the ins and outs of reporting a breach. But occasionally I feel obligated to publish such accounts when companies respond to a breach report in such a way that it’s crystal clear they wouldn’t know what to do with a data breach if it bit them in the nose, let alone festered unmolested in some dark corner of their operations. Nor did the statement even acknowledge a security incident.

Defense Department Agency Reports Data Breach

Data Breach Today

Defense Information Systems Agency Has a Security Mission A U.S. Defense Department agency that's responsible for providing secure communications and IT equipment for the president and other top government officials says a data breach of one of its systems may have exposed personal data, including Social Security numbers

Threat actor is selling 368.8 million records from 26 data breaches

Security Affairs

A data breach broker is selling user records allegedly from twenty-six data breaches on a hacker forum. Security experts from Bleeping Computer reported that a threat actor is selling user records allegedly stolen from twenty-six companies on a hacker forum.

Fragomen law firm data breach exposed Google employee’s data

Security Affairs

Immigration law firm Fragomen has disclosed a data breach that exposed current and former Google employees’ personal information. These services are available through IDX, the data breach and recovery services expert.”

T-Mobile Faces Yet Another Data Breach

Threatpost

Breach Hacks Mobile Security CPNI customer account information customer proprietary network information cyberattack data breach mobile phone numbers t-mobile usa WirelessThe cyberattack incident is the wireless carrier's fourth in three years.

Carnival Announces Data Breach Following Ransomware Attack

Adam Levin

Carnival Corporation, the largest cruise ship company in the world, announced that it had experienced a data breach following a ransomware attack on their systems. The post Carnival Announces Data Breach Following Ransomware Attack appeared first on Adam Levin.

Staples discloses data breach exposing customer order data

Security Affairs

Giant office retail company Staples disclosed a data breach, threat actors accessed some of its customers’ order data. The office retail giant sent out a data breach notification letter to the impacted customers, the incident took place around September 2.

Equifax's Data Breach Costs Hit $1.4 Billion

Data Breach Today

Massive 2017 Breach Continues to Bite the Credit Reporting Giant's Bottom Line Equifax has reported a loss in its latest quarter due to ongoing incident response, legal, investigative and corporate information security overhaul costs resulting from its 2017 data breach. billion as a result of the massive breach

Lessons to Learn From Shopify Data Breach

Data Breach Today

Security Experts Call for 'Zero Trust' Approach, Enhanced IAM Shopify's announcement this week that two employees inappropriately accessed transactional data from 200 of the merchants that use its e-commerce platform demonstrates the importance of taking a "zero trust" approach to security and improving identity and access management capabilities, security experts say

UK ICO fines hotel chain giant Marriott over data breach

Security Affairs

The UK Information Commissioner’s Office fined US hotels group Marriott over the 2018 data breach that affected millions of customers worldwide. million) for multiple data breaches suffered by the company since 2018 that exposed the personal information of its customers.

Data Breach Settlement Calls for Enhanced Security Measures

Data Breach Today

million settlement of a class action lawsuit against Banner Health stemming from a 2016 data breach. The settlement spells out steps the Phoenix-based organization must take to improve information security Court Grants Final Approval of $8.9 Million Banner Health Class Action Lawsuit Settlement A federal court recently granted final approval for an $8.9

A data breach broker is selling account databases of 17 companies

Security Affairs

A data breach broker is selling account databases containing a total of 34 million user records stolen from 17 companies. The threat actor is advertising the stolen data since October 28 on a hacker forum.

Robotic Process Automation vendor UiPath discloses data breach

Security Affairs

The startup started reporting the security incident to its customers that had their data accidentally exposed online, only users who registered on its platform before or on March 17, 2020, were impacted. SecurityAffairs – hacking, data leak).

Canon publicly confirms August ransomware attack and data breach

Security Affairs

Canon finally confirmed that it has suffered a ransomware attack in early August that resulted in the theft of data from its servers. Canon has finally confirmed that it was the victim of a ransomware attack in early August and that the threat actors also stole data from its servers.

Vertafore data breach exposed data of 27.7 million Texas drivers

Security Affairs

million Texas drivers has been exposed in a data breach caused by a human error. The company disclosed this security breach this week, data was stored on an unsecured external storage service and they were accessed by an external party.

Reading the 2020 Cost of a Data Breach Report

Security Affairs

2020 Cost of a Data Breach Report: the global total cost of a data breach averaged $3.86 This year the researchers analyzed 524 breaches that occurred between August 2019 and April 2020, in organizations of all sizes, across 17 geographies and 17 industries.

Under GDPR, UK Data Breach Reports Quadruple

Data Breach Today

After Privacy Law Went Into Full Effect, Data Security Complaints Doubled One year after Europe's tough new GDPR privacy law went into full effect last May, authorities in Britain have seen the number of annual data breach notifications more than quadruple. Meanwhile, the number of data protection complaints filed by Europeans has doubled

Experian South Africa discloses data breach, 24 million customers impacted

Security Affairs

The South African branch of consumer credit reporting agency Experian disclosed a data breach that impacted 24 million customers. The South African branch of consumer credit reporting agency Experian disclosed this week a data breach that impacted 24 million customers.

Havenly discloses data breach, 1.3M accounts available online

Security Affairs

Havenly, a Denver-Based company, that realized an interior designer marketplace has disclosed a data breach that impacted 1.3 The leaked records included a login name, full name, MD5 hashed password, email address, phone number, zip, and other data related.

Nitro PDF data breach might impact major companies, including Microsoft, Google, and Apple

Security Affairs

Nitro PDF suffered a massive data breach that impacts many major organizations, including Apple, Chase, Citibank, Google, and Microsoft. develops commercial software used to create, edit, sign, and secure Portable Document Format (PDF) files and digital documents.

COVID-19 vaccine manufacturer suffers a data breach

Security Affairs

According to The Economic Times the company suffered a data breach. In response to the security breach, the COVID-19 vaccine manufacturer has isolated all data center services. “In

The Prolonged Cost of a Data Breach

Data Breach Today

Data breach costs continue well after the initial year, according to the latest IBM/Ponemon Institute,"Cost of a Data Breach" report. Limor Kessem of IBM Security shares details of the study

Data Breaches Exposes Vets, COVID-19 Patients

Threatpost

Social engineering and employee mistakes lead to breach Veteran's Administration and the National Health Service. Breach Cloud Security Hacks coronavirus covid-19 patients data breach hack internal tool national health service server mistake Veteran's Administration veterans wales

List of data breaches and cyber attacks in November 2020 – 586 million records breached

IT Governance

We recorded 103 cyber security incidents in November, which accounted for 586,771,602 leaked records. The majority of those came from a credential-stuffing attack targeting Spotify and a data leak at the messaging app GO SMS Pro, which you can learn more about below. Data breaches.

Carnival confirms data breach as a result of the August ransomware attack

Security Affairs

Carnival Corporation, the world’s largest cruise line operator, has confirmed a data breach as a result of the august ransomware attack. The unauthorized access also included the download of certain of our data files,” states the 8-K form filed with the SEC.

List of data breaches and cyber attacks in December 2020 – 148 million records breached

IT Governance

We logged 134 security incidents in December, which accounted for 148,354,955 breached records. We’ll have a separate post looking at the year’s data breaches and cyber attacks in more detail, but in the meantime, you can find the full list of December’s incidents below.

GoDaddy discloses a data breach, web hosting account credentials exposed

Security Affairs

GoDaddy has been notifying its customers of a data breach, threat actors might have compromised their web hosting account credentials. GoDaddy has been notifying its customers of a data breach, attackers might have compromised users’ web hosting account credentials. The hosting provider submitted a data breach notice with the California Attorney General, it revealed that the intrusion took place in October 2019.

XKCD forum data breach impacted 562,000 subscribers

Security Affairs

The popular webcomic platform XKCD has suffered a data breach that exposed data of its forum users, the incident impacted 562,000 subscribers. XKCD has suffered a data breach that exposed data of its forum users. The data breach impacted 562,000 subscribers, the forum has been taken offline after the incident. We’ve been alerted that portions of the PHPBB user table from our forums showed up in a leaked data collection.”

NASA Announces Data Breach

Adam Levin

The US National Aeronautics and Space Administration has announced that it experienced a data breach in October. In an internal memo sent to employees, the agency disclosed that its “cybersecurity personnel began investigating a possible compromise of NASA servers,” and that they had “determined that information from one of the servers containing Social Security numbers and other PII data of current and former NASA employees may have been compromised.”.

Cloud computing provider Blackbaud paid a ransom after data breach

Security Affairs

Cloud software provider Blackbaud revealed to have paid crooks to decrypt its data following a ransomware attack that took place in May 2020. Despite the company has discovered the intrusion and locked out the attackers, ransomware operators were able to exfiltrate its data.

Travel leisure company Carnival Corporation discloses data breach

Security Affairs

The world’s largest travel leisure company Carnival Corporation discloses a data breach that took place last year and which exposed the personal information of its customers. Carnival Corporation, the world’s largest travel leisure company, discloses a data breach that took place in 2019. ” reads the data breach notification. The post Travel leisure company Carnival Corporation discloses data breach appeared first on Security Affairs.

Reserve Bank of New Zealand Data Breach Caused by Antiquated Third Party Software

Adam Levin

The data breach of the Reserve Bank of New Zealand has been attributed to the compromise of a third party file sharing service. “A The company has reportedly encouraged FTA users to update to a newer and more secure product since at least 2019.

MGM Data Breach Affects Over 10 Million Customers

Adam Levin

MGM Resorts confirmed the leaked data as being the result of a data breach that occurred last year. The data includes full names, home addresses, phone numbers, email addresses, birthdates, and, in some cases, passport numbers of 10,683,188 hotel guests, including celebrities and prominent public figures such as Justin Bieber and Twitter CEO Jack Dorsey. We are confident that no financial, payment card or password data was involved in this matter.”.

Apex Laboratory disclose data breach after a ransomware attack

Security Affairs

At-home laboratory services provider Apex Laboratory discloses a ransomware attack and consequent data breach. ” reads the data breach notification published by the company. Leaked data includes patients’ data and employee information.

COVID-19 Vaccine-Maker Hit with Cyberattack, Data Breach

Threatpost

Reddy's, the contractor for Russia’s “Sputinik V” COVID-19 vaccine and a major generics producer, has had to close plants and isolate its data centers.

Marriott discloses data breach impacting up to 5.2 Million guests

Security Affairs

Marriott disclosed a new security breach detected at the end of February 2020 that could impact up to 5.2 Marriott International discloses a data breach that exposed the personal information of roughly 5.2 ” reads the data breach notification published by the company. Guests could check whether they have been impacted by the security breach by visiting the online portal set up by the company.