Data Breaches

Top 10 Data Breaches of 2022 (So Far...)

Oct 18, 2022 By Hardeep Singh In Appknox

As we are in the midst of the October Cybersecurity Awareness Month of 2022, all of us need to be more cautious than ever regarding the risks surrounding an increasingly complex and lethal cyber threat landscape. Appknox takes this opportunity to join forces with cybersecurity champions and stakeholders to raise awareness about mobile app security. Our aim is to empower everyone to protect their personal data from cybercrime.

Read Post

Appknox

Read more about Top 10 Data Breaches of 2022 (So Far...)

Stop blaming employees for cybersecurity breaches

Oct 18, 2022 By Tripwire Guest Authors In Tripwire

When companies drive a wedge between their workforce and their security culture, not only do they reduce best practices, but they also increase stress and jeopardise secure behaviours. We need to stop blaming employees for cybersecurity breaches and look at the real reasons that data is compromised. Furthermore, as long as there are humans at work, there will be human error at work. It is natural, and never 100% avoidable!

Read Post

Tripwire

Read more about Stop blaming employees for cybersecurity breaches

Payment Details of 1.2M Cardholders Leak on the Dark Web

Oct 13, 2022 By Application Security Weekly In ImmuniWeb

Read also: Microsoft fixes a Windows zero-day, Mango Markets DeFi platform robbed of over $100M, and more.

Read Post

ImmuniWeb

Read more about Payment Details of 1.2M Cardholders Leak on the Dark Web

Learnings from the Optus Breach

Oct 13, 2022 By AppSentinels In AppSentinels

Before we delve into the reasons behind Optus breach, let’s see the chronology of events. According to various reports, Optus customer data was accessed via an API interface that was not secure. Apart from unauthenticated API, there was another serious issue related to easily enumerated ID’s (identifiers). These are foundational controls that were found lacking in the API implementation..

Read Post

AppSentinels

Read more about Learnings from the Optus Breach

Calculate the Cost of A Data Breach

Oct 12, 2022 By Arctic Wolf In Arctic Wolf

The worst-case scenario happens: Your organization suffers a data breach. It’s going to take time to clean it up, the business’ reputation may take a hit, and there’s the major issue of cost. How much does cleanup cost? What if it’s a ransomware attack where your organization must pay the ransom? What other specialists will you have to hire—and how much will you need to pay them?

Read Post

Arctic Wolf

Read more about Calculate the Cost of A Data Breach

Toyota data breach - Database keys exposed publically in GitHub for 5 years

Oct 12, 2022 By GitGuardian In GitGuardian

On October 7th, Toyota revealed a partial copy of their T-Connect source code had been accidentally exposed for 5 years, including access to data for over 290,000 customers. In 2014, Toyota introduced a new telematics service called T-Connect to customers, offering interactive voice response and allowing drivers to connect to third-party apps. Toyota advertises it as their “connected services that provide safe, secure, comfortable, and convenient services through vehicle communication.”

View Video

GitGuardian

Read more about Toyota data breach - Database keys exposed publically in GitHub for 5 years

Social Engineering and VPN Access: The Making of a Modern Breach

Oct 7, 2022 By Hank Schless In Lookout

In what seems to be a constant drip of headlines about large enterprises experiencing security incidents, the world most recently learned of a successful data infiltration of rideshare and delivery company Uber. In a blog update, Uber attributed the attack to the infamous Lapsus$ group that has made a name for itself over the past year with successful breaches of household names including Microsoft, Rockstar Games, Samsung, Nvidia, Ubisoft, and Okta.

Read Post

Lookout

Read more about Social Engineering and VPN Access: The Making of a Modern Breach

What to Do After a Password-Related Data Breach

Oct 7, 2022 By Craig Lurey In Keeper

Some organizations might think they’re saving money by not investing in proper cybersecurity solutions, but one data breach could bankrupt a company. In fact, the average cost of a data breach has reached an all-time high of $4.35 million, according to a 2022 report by IBM and the Ponemon institute. Companies must take measures to secure their data and avoid potentially dire financial consequences.

Read Post

Keeper

Read more about What to Do After a Password-Related Data Breach

The Uber Hack - A step by step breakdown of the 2022 Uber data breach

Oct 7, 2022 By GitGuardian In GitGuardian

On September 15th Uber suffered a significant breach. In this video, we will break down exactly how Uber was breached from initial access to how the attacker moved laterally into different internal systems of Uber. What happened? Here’s what we know so far, pending investigation and confirmation from Uber’s security teams.

View Video

GitGuardian

Read more about The Uber Hack - A step by step breakdown of the 2022 Uber data breach

Universities take 207 days to detect a data breach

Oct 6, 2022 By Sam Manjarres In WatchGuard

Although cyberattacks on higher education institutions date back years, there has been a spike in university cyberattacks over the last two years. Cybercriminals had taken advantage of the rapid transition to hybrid learning that higher education institutions have been forced to implement before they had time to strengthen their cybersecurity, which has left most of them exposed. This is yet another example of accelerated adoption of new technologies before security measures are in place.

Read Post