A reported 90% of all data breaches affect small businesses, and these breaches can be quite costly. Cyber insurance is one way to help protect your organization.
Breach
Dyn DDoS attack exposes soft underbelly of the cloud
Some of the country’s most popular sites were disrupted by a DDoS attack Friday. Additionally, corporate applications could not be accessed and organizations were unable perform critical business operations.
Yahoo Admits Half a Billion Users’ Info Hacked
Yahoo has confirmed that a ‘likely state sponsored’ 2014 breach exposed data from about 500 million users. The company has stated that information possibly affected includes names, email addresses, birth dates and scrambled passwords. Even more alarming is the acknowledgment that encrypted or unencrypted security questions and answers may have also been compromised, which could allow hackers to access victims’ other online accounts.
Dropbox Acknowledges Leak of 68 Million Passwords
The cloud-storage site has confirmed that 68 million users’ passwords have been compromised. While the hack was in 2012, new information has just recently confirmed that passwords were included in the breached data.
Leaked DNC Emails Show Lax Cybersecurity
More information on the DNC breach shows us that no organization is too big to follow the most basic cybersecurity practices. The most glaring issues identified include the transfer of personally identifiable information and passwords via unencrypted email.
China Suspected in FDIC Breaches
A new congressional report indicates the Chinese government was likely responsible for hacks at the FDIC in 2010, 2011 and 2013. A total of 12 workstations were compromised and 10 servers were penetrated and infected with a virus.
Does the Booming Short-Term Rental Market Pose a Security Threat?
In short, yes. Guests of short-term rentals, like the popular Airbnb, can reset home routers and gain full control of network traffic. What’s more, the potential hacker needs only one thing: a paper clip.
$55 Million in Digital Currency Stolen from Investment Fund
The $150 million experimental investment fund known as Decentralized Autonomous Organization has been hacked, resulting in a loss of $55 million in digital currency. The June 17th hack resulted in a loss of 3.6 million ethereum coins as attackers created an identical fund and moved the money into it.
Invest Bank UAE Appears to be Victim of 10GB Breach
A Turkish hacking group is likely responsible for the release of 10GB of UAE-based Invest Bank files. The archive is said to contain internal files and sensitive financial documents, including customer data.
Bangladesh Bank Attackers Hacked SWIFT Software
A Bangladesh Bank was a victim of a malware attack that allowed hackers into the bank’s SWIFT software to transfer money and even hide their tracks in the process. $81 million were stolen.
‘Panama Papers’ Spill Insider Secrets
The 11.5 million leaked documents reveal alleged money laundering, tax avoidance and sanctions dodging by heads of state, politicians, celebrities and other fraudsters.
5 Steps CPAs Can Take to Fight Hackers
Big or small, every organization is at risk. Here I discuss ways to protect yourself and your clients.
Verizon Confirms Breach Affecting Business Customers
Verizon has released a statement confirming that “Verizon Enterprise Solutions recently discovered and fixed a security vulnerability on our enterprise client portal. Our investigation to date found an attacker obtained basic contact information on a number of our enterprise customers.” Experts believe the exposure of the clients’ contact information leaves them more vulnerable to phishing attacks.
Cancer Center Chain: Hacker Attack Affects 2.2 Million
21st Century Oncology was notified by the FBI in November 2015 that a third party may have gained access to a 21st Century database. A forensic firm confirmed what the FBI suspected, noting that a possible 2.2 million patients’ names, Social Security numbers, physicians’ names, diagnosis and treatment information, and insurance information was obtained.
Toymaker VTech Hacked: 200,000 Kids’ Data Exposed
VTech has issued a notification that customer accounts and related kids profiles worldwide have been affected. User profile information includes name, email address, password, secret question and answer for password retrieval, IP address, mailing address and download history. Moreover, children’s name, gender and birthdate were also stored.
Hackers Claim FBI Information-Sharing Portal Breached
A group of hackers claims to have breached the FBI’s Law Enforcement Enterprise Portal (LEEP), which includes records of individuals who have been arrested by U.S. federal agencies as well as tools for sharing information between U.S. federal agencies and partners located both domestically and abroad.
E*Trade, Dow Jones Issue Breach Alerts
E*Trade and Dow Jones have issued separate warnings to customers and subscribers about possibly compromised personal information, including payment card data. E*Trade has alerted about 31,000 customers about the compromise of personal data in late 2013, while Dow Jones issued a warning of a possible breach from August 2012 until July 2015 that it claims affected less than 3,500 individuals.
Scottrade Belatedly Learns of Breach
Law enforcement has informed the discount stock brokerage firm Scottrade that hackers accessed its computer network nearly two years after the start of the breach. Names and addresses of 4.6 million clients between late 2013 and early 2014 were exposed.
Carphone Warehouse Breach
Carphone Warehouse Hack Exposes Data of 2.4 Million Customers
Carphone Warehouse experienced a breach affecting 2.4 million customers. Breached data included names, birthdates, addresses and bank account information. It is believed that the breach began with a phishing attack.
Healthfirst Data Breach
In a Twist, Fraud Probe Reveals Breach
Healthfirst, a not-for-profit managed care organization, was a victim to a scam that resulted in a breach of patient data. The perpetrators posed as medical suppliers and were granted access to Healthfirst’s web portal and stole information as authorized users.
Planned Parenthood Hacked
Planned Parenthood Reports Hack Attack
Planned Parenthood has been hacked by an anti-abortion group. The group was able to access the data by using SQL-injection attacks. The data includes internal emails and information about employees.
Ashley Madison Website Hacked
Pro-Adultery Dating Site Hacked
Ashley Madison, a dating site encouraging adultery, has been hacked. The group responsible for the hack is threatening to release details of the site’s 37 million customers if the site does not shut down.
Popular Photo Services Vendor Breached
More Retailers Hit by New Third-Party Breach?
PNI Digital Media Inc. suffered a breach of customer information and cardholder data. PNI provides online photo services for many retailers, such as CVS, Rite-Aid, Sam’s Club and Walmart Canada. Each retailer shut down the online photo services.
UCLA Health Hacked
UCLA Health Cyber-Attack Affects Millions
UCLA Health suffered a data breach potentially affecting 4.5 million individuals. It was confirmed that hackers accessed the network, but actual data accessed has not been confirmed.
Service Systems Associates Breach
Denver POS Service Provider Breached
Service Systems Associates, which provides payment systems, suffered a breach. Twelve of its payment systems suffered malware attacks. The number of cardholders affected is currently unknown.
Hacking Team Hacked
Surveillance Software Firm Breached
Hacking Team, which develops spyware and other surveillance software, was hacked. The breach included 400GB of sensitive company information. The company’s Twitter account was also compromised.
Bitcoin Exchange Hacked
Bitcoin Exchange Hacked With Word Macro
Bitstamp, which is a bitcoin exchange, suffered a breach resulting in a loss of 18,977 bitcoins ($5.3 million). The attack was a sophisticated spear-phishing attack and included Skype and a Microsoft Word Macro.
Trump Hotel Hacked
Trump Hotel Investigates Hack Report
Trump Hotel Properties was victim of a card data breach at multiple locations. It is likely that malware is to blame.
Montefiore Medical Center Employee Sold Patient Data
Hospital ID Theft Leads to Fraud
A former hospital worker of Montefiore Medical Center stole patient data and sold the patient records. Stolen data was utilized to open up store credit card accounts.
LOT Flights Grounded
LOT, a Polish airline, fell victim to an attack that affected ground-control systems. Flight plans could not be issued; therefore, flights were cancelled for 1,400 passengers.