IT Governance

OCTOBER 26, 2021

Welcome to our third quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. IT Governance discovered 266 security incidents between July and September 2021, which accounted for 185,721,284 breaches records.

Data breaches 130

Data breaches Retail Government Ransomware 130

IT Governance

JULY 11, 2022

Welcome to our second quarterly review of security incidents for 2022, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 237 security incidents between April and June 2022, which accounted for 99,019,967 breached records.

Data breaches 105

Data breaches Ransomware Phishing Government 105

IT Governance

SEPTEMBER 15, 2022

You’ll often see the terms cyber security and information security used interchangeably. In this blog, we explain what information security and cyber security are, the differences between them and how they fit into your data protection practices. What is information security? This is cyber security.

Information Security 126

Information Security Security Computer and Electronics Encryption 126

IT Governance

DECEMBER 1, 2022

Welcome to our November 2022 review of data breaches and cyber attacks. We identified 95 security incidents throughout the month, accounting for 32,051,144 breached records. The first was a data breach at Twitter, in the latest PR disaster for the social media giant. Data breaches. Cyber attacks. Ransomware.

Data breaches 115

Data breaches Ransomware Personal data Insurance 115

IT Governance

NOVEMBER 1, 2022

Welcome to our October 2022 review of data breaches and cyber attacks. We identified 102 security incidents throughout the month, which is the second largest figure so far this year – trailing only August (112). As always, you can find the full list of data breaches and cyber attacks below, divided into their respective categories.

Data breaches 111

Data breaches Ransomware Insurance Phishing 111

IT Governance

JANUARY 20, 2022

Welcome to our review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. IT Governance discovered 1,243 security incidents in 2021, which accounted for 5,126,930,507 breached records. How security incidents occurred.

Data breaches 144

Data breaches Ransomware Phishing Government 144

IT Governance

JULY 10, 2023

Welcome to our second quarterly review of cyber attacks and data breaches for 2023. In this article, we take a closer look at the information gathered in our monthly list of security breaches , and delve into the infosec landscape over the past three months. Which sectors are most vulnerable?

Data breaches 73

Data breaches Ransomware Encryption Government 73

IT Governance

JULY 13, 2021

Welcome to our second quarterly review of security incidents for 2021, in which we take a closer look at the information gathered in our monthly list of cyber attacks and data breaches. In this blog, we provide an overview of the security landscape in the past three months, and look at key statistics and observations.

Data breaches 98

Data breaches Retail Ransomware Government 98

Security Affairs

JUNE 8, 2022

China-linked threat actors have breached telecommunications companies and network service providers to spy on the traffic and steal data. US NSA, CISA, and the FBI published a joint cybersecurity advisory to warn that China-linked threat actors have breached telecommunications companies and network service providers.

Authentication 100

Authentication Passwords Systems administration Manufacturing 100

IT Governance

APRIL 12, 2023

Welcome to our first quarterly review of security incidents for 2023, in which we take a closer look at the information gathered in our monthly list of data breaches and cyber attacks. Overview IT Governance discovered 310 security incidents between January and March 2023, which accounted for 349,171,305 breached records.

Data breaches 59

Data breaches Ransomware Government Encryption 59

IT Governance

NOVEMBER 28, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. This week, we’re taking a slightly different approach with the ‘publicly disclosed data breaches and cyber attacks’ category, presenting the most interesting data points in a table format.

Data Privacy 52

Data Privacy Privacy Energy and Utilities Data breaches 52

IT Governance

DECEMBER 11, 2019

Some are quick fixes that you can sort out before you go away for the holidays, whereas other require a refined, systematic approach to information security. Weak passwords. Rainbow tables : Most modern systems store passwords in a hash. Brute force : The hacker tries common passwords in the hope that they will find a match.

Access 96

Access Passwords Education Information Security 96

eSecurity Planet

MAY 30, 2024

Cloud security management is the process of safeguarding cloud data and operations from attacks and vulnerabilities through a set of cloud strategies, tools, and practices. The cloud security manager and the IT team are generally responsible for managing cloud security.

Cloud 61

Cloud Security Compliance Encryption 61

Data Matters

NOVEMBER 4, 2020

Third, it creates a new category of businesses: those that voluntarily agree to be subject to the CCPA. Even so, with these and other new requirements, the CPRA does not go as far as some consumer privacy advocates had hoped it would. A Closer Look at Key CPRA Provisions. Changes to the Definition of Businesses Subject to the CPRA.

Privacy 122

Privacy B2B Sales Data breaches 122

eSecurity Planet

SEPTEMBER 16, 2021

OWASP security researchers have updated the organization’s list of the ten most dangerous vulnerabilities – and the list has a new number one threat for the first time since 2007. The Open Web Application Security Project (OWASP) is a nonprofit foundation and an open community dedicated to security awareness.

Authentication 130

Authentication Access Security awareness Security 130

IT Governance

JULY 2, 2020

Second, organisations must implement security measures to protect personal data from being breached or misused, and they must disclose any security incidents involving this data. There is also a special category of personal data devoted to sensitive information. Does the GDPR apply to small businesses?

GDPR 111

GDPR Personal data Data breaches Compliance 111

KnowBe4

JUNE 13, 2023

As we will cover a bit below, Verizon reported that 74% of data breaches Involve the "Human Element," so people are one of the most common factors contributing to successful data breaches. However, when we look at confirmed breaches, Phishing is still on top." How do hackers crack your passwords with ease?

Phishing 75

Phishing Passwords Data breaches Security awareness 75

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

eSecurity Planet

SEPTEMBER 23, 2022

Securities and Exchange Commission (SEC) strongly advised public companies to improve their cybersecurity. While the new security proposals have not yet become law, cybersecurity managers can begin to prepare metrics and audits that will not only help comply with those laws, but can also help create positive change now.

Cybersecurity 131

Cybersecurity Compliance Risk Communications 131

eSecurity Planet

APRIL 30, 2024

Setting up a firewall is the first step in securing your network. A successful firewall setup and deployment requires careful design, implementation, and maintenance to effectively improve your network integrity and data security. Take note of your security requirements, physical environment, and component interoperability.

Compliance 61

Compliance Risk Access Security 61

IBM Big Data Hub

JANUARY 24, 2024

To mitigate and prepare for such risks, penetration testing is a necessary step in finding security vulnerabilities that an attacker might use. A penetration test , or “pen test,” is a security test that is run to mock a cyberattack in action. These attacks are often performed by red teams, or offensive security team.

Risk 73

Risk Data breaches Authentication Cybersecurity 73

IT Governance

JUNE 26, 2019

Data breaches are fast becoming a top priority for organisations. Let’s go through the most common ways in which an organisation’s data can be breached and look at some examples of how it might happen. Employees are the weakest link in your data breach defences. Employee error. Cyber attack. Social engineering.

Data breaches 92

Data breaches Passwords Ransomware Phishing 92

IT Governance

MAY 9, 2019

HMRC (HM Revenue and Customs) has been told to delete more than five million people’s voice records after it was discovered that the way the information was collected breached the GDPR (General Data Protection Regulation). What was HMRC’s mistake? However, it didn’t obtain the information appropriately. The trouble with consent.

GDPR 53

GDPR Personal data Education Passwords 53

IT Governance

JANUARY 7, 2020

In our first review of 2020, we look at a new twist on a PayPal scam, and discuss data breaches at an IVF treatment facility and in the Singapore government. Security researchers at ESET are warning people about a new scam targeting PayPal users. Green padlock = good and secure, right? The final trick.

Phishing 94

Phishing Passwords Access Government 94

eSecurity Planet

DECEMBER 7, 2023

This guide will provide a high level overview of encryption and how it fits into IT through the following topics: How Encryption Works To understand how encryption works, we need to understand how it fits into the broader realm of cryptology, how it processes data, common categories, top algorithms, and how encryption fits into IT security.

Encryption 112

Encryption IT Passwords IoT 112

eSecurity Planet

SEPTEMBER 10, 2021

From the very beginning of the cloud computing era, security has been the biggest concern among enterprises considering the public cloud. In addition, 95 percent of survey respondents confirmed that they are extremely to moderately concerned about public cloud security. What is cloud security?

Cloud 131

Cloud Security Encryption Risk 131

eSecurity Planet

JULY 7, 2023

Vulnerability scanning is critically important for identifying security flaws in hardware and software, but vulnerability scanning types are as varied as the IT environments they’re designed to protect. The agent gathers information and connects with a central server, which manages and analyzes vulnerability data. Tenable.io

Cloud 98

Cloud Compliance Authentication Access 98

Data Matters

AUGUST 5, 2019

On July 25, 2019, Governor Cuomo signed the two bills into law, one which amended the state’s data breach notification law, and another that created additional obligations for data breaches at credit reporting agencies. The Stop Hacks and Improve Electronic Data Security Act.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

DLA Piper Privacy Matters

MAY 11, 2020

Exempt businesses from needing to provide access to “specific pieces of personal information” from data generated to help ensure security or integrity or as prescribed by regulation. Right to data minimization, as well as providing notice to consumers about the length of time each category of personal information will be retained.

Privacy 52

Privacy Unstructured data Access Data collection 52

Data Matters

JUNE 29, 2018

It was also the first to enact data breach notification legislation, which all other states have now followed. Specific categories defined as personal information include. Specific categories defined as personal information include. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375).

GDPR 79

GDPR Privacy Sales Data breaches 79

KnowBe4

SEPTEMBER 10, 2019

Facebook recently came under fire after the revelation that they were storing passwords in plain text and are facing astronomical fines under the GDPR. Both the GDPR and CCPA are focused on ensuring that personal data is used ethically and kept secure. (In Publicly available government records. What Businesses Are Affected?

GDPR 73

GDPR Privacy Personal data Passwords 73

eSecurity Planet

MAY 24, 2024

Cloud security fundamentals are the core requirements that ensure data protection, regulatory compliance, and access management in a cloud environment. These standards assist businesses in establishing trust with their consumers, avoiding financial losses due to breaches, and ensuring business continuity.

Cloud 118

Cloud Security Compliance Encryption 118

Data Matters

OCTOBER 24, 2019

The regulations lay out a number of general principles to govern verification responsibilities. Critically, while some of the regulation’s provisions are required, many of the specific procedures are crafted with safe harbor language, advising on what a business “may” do to verify certain categories of consumers.

Privacy 60

Privacy Sales Authentication Passwords 60

Data Matters

JUNE 29, 2018

It was also the first to enact data breach notification legislation, which all other states have now followed. Specific categories defined as personal information include. Specific categories defined as personal information include. Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375).

GDPR 60

GDPR Privacy Sales Data breaches 60

Data Matters

OCTOBER 22, 2019

In the summer of 2018, the California Legislature drafted and passed the California Consumer Privacy Act (CCPA) in record time. This abbreviated legislative process produced a bill with numerous gaps and anomalies, however. update their privacy policies with numerous disclosures.

Privacy 60

Privacy Sales Paper Compliance 60

IT Governance

APRIL 28, 2021

Welcome to our first quarterly review of cyber attacks and data breaches. For several years, we’ve produced a monthly list of security incidents , comprised of publicly disclosed breaches from mainstream publications. How security incidents are occurring. There has also been an upward trend so far in 2021.

Data breaches 137

Data breaches Passwords Education Phishing 137

eSecurity Planet

OCTOBER 24, 2023

The stakes are even higher for businesses, government and other organizations, as successful attacks can be devastating to operations and sensitive data. Paranoia is a very good thing with web security in general. Here are 15 important controls and best practices for preventing malware.

Passwords 121

Passwords Encryption Authentication Phishing 121