[HEADS UP] Popular Stock Trading Platform Becomes Next Victim of Data Breach



Robinhood Data BreachBleeping Computer recently reported a data breach from popular stock trading platform Robinhood. This breach has impacted over 7 million of their customers.

The attack took place November 3rd after a cybercriminal used social engineering tactics to convince a employee to gain access to the customer support systems. Once the support systems were accessed, the cybercriminal was able to obtain personal information from Robinhood's customer database. 

Robinhood released this statement on their blog, "At this time, we understand that the unauthorized party obtained a list of email addresses for approximately five million people, and full names for a different group of approximately two million people,"

While the company believes that debit card numbers and bank account numbers were not exposed during the attack, they have received an extortion demand in Bitcoin.
 
Robinhood recommends taking the following precautions if you're a customer:
  • Look out for any phishing emails that are designed to steal your login credentials
  • Only interact with the authorized Robinhood social apps. You can find these social accounts within the app at Help Center > General Questions > Robinhood Social Media.
  • Report suspected phishing scams to reportphishing@robinhood.com
  • Enable 2-factor authentication for Robinhood accounts within the app at Accounts > Security and Privacy > Two-Factor Authentication.

Had the Robinhood employee received new-school security awareness training, this data breach could have been prevented. This unfortunate incident should serve as a warning for your organization to continually educate your users on the latest threats and attack tactics. 


Request A Demo: Security Awareness Training

products-KB4SAT6-2-1New-school Security Awareness Training is critical to enabling you and your IT staff to connect with users and help them make the right security decisions all of the time. This isn't a one and done deal, continuous training and simulated phishing are both needed to mobilize users as your last line of defense. Request your one-on-one demo of KnowBe4's security awareness training and simulated phishing platform and see how easy it can be!

Request a Demo!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/kmsat-security-awareness-training-demo



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews