Log4J bug hits everything, everywhere
Engineers at Google and scores of other tech companies have endured a less than pleasant couple of weeks, ever since the discovery of the log4j bug. It has been described as the most serious data breach ever, due to the sheer volume of online services that use the log4j code, which helps applications track their… Read More
Zero Trust as part of data security policy
Examining over 530 data breaches across 17 countries, a 2021 report from the Ponemon Institute reveals that the average cost per breach this year increased by 10%, the largest such spike in years. According to the report, the most substantial hit to a breached firm comes from lost business, followed by spending on breach notifications,… Read More
Robinhood’s breach brings lawsuit
Robinhood Markets Inc. is now facing a lawsuit for its recent data breach, one that saw about 7 million individuals have their personal data stolen, or one-third of Robinhood’s total userbase. Hackers in this case utilized social engineering, fooling a customer service representative over the phone, which allowed them entry. Once again, it’s interesting how… Read More
12 hackers arrested in Europe
According to security groups Kaspersky and Emsisoft, 2020 saw approximately 65,000 successful ransomware attacks worldwide. As part of a joint operation, Europol has recently arrested 12 of the contributors to this total. After much coordination by the agency and involvement with other authorities in Europe and the US, the suspects were apprehended in the Ukraine… Read More
Amazon’s GDPR Penalties
A massive fine against Amazon for GDPR violations was instituted this month, and now the corporate giant is appealing the results. Insisting the $865 million penalty is completely baseless and unwarranted, Amazon has taken its issue up with the Luxembourg Administrative Tribunal after the country’s data protection regulator levied the fine in July. Indeed, Amazon… Read More
Nuclear sub data smuggled in sandwich (but not a sub)
Selling nuclear warship data and FBI arrests go together like PB & J. In this case, literally, since the guilty party hid the SD storage card containing the data inside an actual sandwich. I didn’t have that on my data security bingo. A US Navy engineer and his wife are now accused of planning to… Read More
SolarWinds breach compels SEC probe
In the continued aftermath of the 2019 SolarWinds breach, new developments see the U.S. Securities and Exchange Commission (SEC) asking hundreds of firms to hand over information dating back to October 2019 that pertains to “any other” breach or ransomware incident in which any SolarWinds network software updates were downloaded. This totaled over 18,000 SolarWinds… Read More
Are we at DEFCON 1 for Data Breaches?
How government agencies can ensure that their valuable data doesn’t fall into the wrong hands Cybercrime continues to be on a steady incline. No matter what type of industry or organization you work in, it knows no boundaries. In this paper, however, we take a closer look at the government sector. The organizations and agencies… Read More
Data breaches at JPMorgan Chase and T-Mobile
A couple of big name breaches have made the news recently, from both JPMorgan Chase and T-Mobile. In the former, the bank warned that a number of customers had their personal information accessible to others via the mobile app or website. Among the information were potentially account numbers, balances and transactions. As of yet, no… Read More
California DMV Breach and the Costs of Remote Working
People may be driving less these days, but the personal data accumulated in this area can still be a cyber attack vector. Now, California drivers have been put at risk by a data breach. The state’s Department of Motor Vehicles has suffered a breach, and as is often the case, third party issues underlie the… Read More