Data Breaches

Complacency is Your Biggest Data Breach Risk: 5 Steps to Avoid It

Nov 28, 2022 By Dave Matthews In archTIS

Cyberattacks are still big business and on the rise. Despite substantial increases in cybersecurity spending, many businesses aren’t taking enough action to mitigate their risks. While a significant data breach in itself is a scary concept, the costs of inaction and the subsequent charges associated with investigations, penalty fines and reputational damage should worry you even more.

Read Post

archTIS

Read more about Complacency is Your Biggest Data Breach Risk: 5 Steps to Avoid It

We can do better: The tech industry and its response to data breaches

Nov 23, 2022 By Megan Barker In 1Password

My colleague, 1Password Senior Security Specialist (and all round stand-up guy) Chris Butler, and I recently chatted about a trend that’s emerged over the past few years: attempts to capitalize on cybersecurity incidents through self-promotion.

Read Post

1Password

Read more about We can do better: The tech industry and its response to data breaches

2 million .git directories exposed! Why .git folders are sensitive & how they are leaked publicly

Nov 21, 2022 By GitGuardian In GitGuardian

In this video, we look through research by CyberNews and other independent researchers that exposes the huge problem of publicly accessible.git directories hosted on web servers. These folders contain all the metadata from a git repository including all the history, commit data and remote host information. These can contain lots of sensitive information that hackers can use to exploit your website and are often very sensitive. We look in detail at what.git directories are, what sensitive information they contain and how they become accidentally public.

View Video

GitGuardian

Read more about 2 million .git directories exposed! Why .git folders are sensitive & how they are leaked publicly

What Caused the Uber Data Breach in 2022?

Nov 18, 2022 By Edward Kost In UpGuard

The Uber data breach began with the purchase of stolen credentials belonging to an Uber employee from a dark web marketplace. The hacker tried to log into Uber’s network with these credentials but was unsuccessful because the account was protected by MFA. To overcome this security barrier, the hacker contacted the employee and, while pretending to be a member of Uber’s security team, asked them to accept the MFA push notification sent to their phone.

Read Post

UpGuard

Read more about What Caused the Uber Data Breach in 2022?

Google To Pay Largest Multi-State Data Privacy Settlement in US History

Nov 17, 2022 By Application Security Weekly In ImmuniWeb

Read also: An FBI-wanted leader of the “Zeus” gang arrested in Geneva, hundreds of Amazon RDS instances leak personal data, and more.

Read Post

ImmuniWeb

Read more about Google To Pay Largest Multi-State Data Privacy Settlement in US History

How CrowdStrike Detects Cloud Storage Misconfigurations to Protect Valuable Data

Nov 14, 2022 By Ciaran OBrien - Matt Johnston In CrowdStrike

Cloud storage misconfigurations continue to become more prevalent and problematic for organizations as they expand their cloud infrastructure, driving the importance of technologies such as cloud security posture management (CSPM) as crucial tools for protectors everywhere. Consider the recently reported public exposure of data associated with some Microsoft customers and prospects.

Read Post

CrowdStrike

Read more about How CrowdStrike Detects Cloud Storage Misconfigurations to Protect Valuable Data

What is Dark Web Monitoring? Tracking Data Leaks & Breaches

Nov 14, 2022 By Kyle Chin In UpGuard

‍Dark web monitoring is the process of tracking your organization’s information on the dark web. Dark web monitoring solutions can scan through billions of pages on the internet to find leaked or stolen information, such as compromised passwords, credentials, intellectual property, and other sensitive data being shared and sold among cybercriminals operating on the dark web.

Read Post

UpGuard

Read more about What is Dark Web Monitoring? Tracking Data Leaks & Breaches

Top 3 Threats to Businesses Impacted by the Optus Data Breach

Nov 11, 2022 By Edward Kost In UpGuard

In this post, the three major cyber threats facing businesses impacted by the Optus breach are discussed. Security responses for each threat are also mentioned to help you reduce the potential of these risks developing into breaches.

Read Post

UpGuard

Read more about Top 3 Threats to Businesses Impacted by the Optus Data Breach

What Caused the Medibank Data Breach?

Nov 10, 2022 By Edward Kost In UpGuard

The Medibank hack began with the theft of credentials belonging to an individual with privileged access to Medibank’s internal systems. These credentials were sold and purchased on the dark web by an unconfirmed buyer who used them to gain access to Medibank’s internal system.

Read Post

UpGuard

Read more about What Caused the Medibank Data Breach?

What many recent data breaches have in common

Nov 9, 2022 By Nick Summers In 1Password

When a data breach appears in the news (which has happened a lot recently), many of us picture a hacker in a black hoodie, trawling through reams of code on a custom-built PC. We often imagine them finding a single mistake – a zero that should be a one, or vice versa – that lets them slip through a company’s defenses.

Read Post