Security Awareness Training Blog

Data Breach Blog

Technical reporting and analysis on high-profile data breaches, how they happened, and how hackers are using the information mined from breaches.

View Topics

New “Karakurt” Threat Group is Gaining Attention Through Multiple and Frequent Extortion Attacks

Dec 30, 2021 3:58:33 PM By Stu Sjouwerman
A new warning from Accenture Security highlights this new cybercriminal group making waves that focuses on a "data breach and extortion” MO rather than relying on ransomware.
Continue Reading

Victims: After a Data Breach, Changing Passwords and Good Password Hygiene Remain Unimportant

Dec 7, 2021 10:53:12 AM By Stu Sjouwerman
New shocking data shows how unconcerned victim users are after being notified of a data breach involving their credentials, personal information, and even social media accounts.
Continue Reading

Data Breach Costs Increase by $1 Million When Remote Workers Are Involved

Nov 30, 2021 10:54:57 AM By Stu Sjouwerman
You already knew remote workers increase the risk of cyberattack. New data spells out exactly what the impact of a remote workforce is on data breaches and the cost to remediate.
Continue Reading

[HEADS UP] Popular Stock Trading Platform Becomes Next Victim of Data Breach

Nov 9, 2021 8:57:32 AM By Stu Sjouwerman
Bleeping Computer recently reported a data breach from popular stock trading platform Robinhood. This breach has impacted over 7 million of their customers.
Continue Reading

Cybercriminal Group SnapMC Takes a Page from Ransomware Gangs in Data Breach-Turned-Extortion Attacks

Oct 20, 2021 10:15:40 AM By Stu Sjouwerman
New analysis of attacks shows threat actors that traditionally focus on stealing data are now utilizing extortion as their monetization strategy, converging tactics with ransomware ...
Continue Reading

Telecom Company Responsible for Routing Billions of Text Messages Annually Acknowledges Multi-Year Breach

Oct 5, 2021 5:21:24 PM By Stu Sjouwerman
Mentioned in passing as part of a Securities and Exchange Commission (SEC) filing, Syniverse admits to hackers having access for five years, potentially impacting millions of mobile phone ...
Continue Reading

Egress: 73% of Orgs Were Victims of Phishing Attacks in the Last Year

Aug 4, 2021 9:23:12 AM By Stu Sjouwerman
A survey sponsored by Egress found that 94% of organizations suffered insider data breaches over the past year. The survey offers the following results:
Continue Reading

Nearly Every Organization Has Had an Insider-Caused Data Breach in the Last Year

Jul 19, 2021 1:45:35 PM By Stu Sjouwerman
Whether it’s from an accidental leak of data or falling victim to a phishing attack, new data from email security vendor Egress puts the insider’s role in breaches into critical ...
Continue Reading

UK IT Decision Makers Fear Their Remote Workers Put Company Data at Risk for Data Breach

May 4, 2021 11:23:23 AM By Stu Sjouwerman
According to an annual survey from Apricorn, UK IT decision makers are fearing the worst as their staff continues to work in a remote environment.
Continue Reading

[HEADS UP] Millions of Facebook Users' Personal Information Has Been Leaked Online

Apr 5, 2021 9:18:20 AM By Stu Sjouwerman
A hacking forum recently published over 553 million personal data of Facebook users. The type of exposed data ranged from phone numbers, Facebook ID's, full names, locations, birthdates, ...
Continue Reading

Data Breach at Dutch Auto Shops Puts 7,3 Million Car Owners at Risk

Mar 29, 2021 9:31:50 AM By Stu Sjouwerman
The Netherlands is dealing with what looks like one of the largest data breaches in the nation so far. Late last week, Dutch public broadcaster NOS revealed that customer data of millions ...
Continue Reading

[ALERT] New Stanford Research: 88% Of Data Breaches Are Caused By Human Error

Mar 4, 2021 6:43:06 PM By Stu Sjouwerman
A recent 2020 report we just discovered confirms what we have been saying for many years now. About 9 out 10 data breaches are caused by your users. We are pleased that the somewhat older ...
Continue Reading

[HEADS UP] New Dutch Data Breach Report Warns of Explosive Increase in Cyber Attacks and Stolen Personal Data

Mar 1, 2021 10:39:15 AM By Stu Sjouwerman
The Dutch Data Protection Authority (AP) recently measured the number of reports of data theft in 2020 and the number of attacks skyrocketed. The report documented that it increased no ...
Continue Reading

Running Headfirst Into a Breach

Feb 23, 2021 2:00:35 PM By Javvad Malik
The pandemic changed the fortunes of many organisations. Perhaps none so much as Zoom, which has found itself becoming a noun synonymous with any form of video call.
Continue Reading

Data Privacy and Fingerprints

Jan 28, 2021 7:55:00 AM By James McQuiggan
Most people know, primarily criminals, that you don't want to leave the oils from your fingers at a crime scene because it creates a fingerprint. Everyone has them (unless they don't have ...
Continue Reading

2021 Begins a New Decade of Privacy

Jan 28, 2021 7:45:00 AM By Lecio DePaula
Privacy issues came about all across the board in 2020, and 2021 will be no different. From WhatsApp updating their terms of service and losing millions of users to countless proposals by ...
Continue Reading

Data Breaches Are Expected to Decline While Ransomware and BEC Gain Steam

Dec 14, 2020 8:27:05 AM By Stu Sjouwerman
A new report from the Identity Theft Research Center discusses which cybersecurity attacks will be most impactful next year as part of the ITRC’s 2021 predictions.
Continue Reading

Famous U.K. Soccer Club Becomes the Next Victim of a Cyber Attack

Nov 23, 2020 8:59:28 AM By Stu Sjouwerman
The famous UK soccer club Manchester United recently became the next victim of a cyber attack. The club stated that the personal data from fans have not been stolen.
Continue Reading

Cannabis Company GrowDiaries Suffers Data Breach of 3.4 Million Users

Nov 4, 2020 9:52:36 AM By Stu Sjouwerman
A recent report from SiliconANGLE released information that cannabis company GrowDiaries suffered a data breach with details of 3.4 million users being exposed online. 
Continue Reading

[HEADS UP] Cybercriminals Threaten Patients in Clinic Data Breach

Oct 26, 2020 5:56:32 PM By Stu Sjouwerman
In a recent report by BBC News, patients in a large clinic in Finland have been blackmailed using social engineering after their data was stolen.
Continue Reading
Subscribe

Search Our Blog


Ransomware Hostage Rescue Manual

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews