Security Awareness Training Blog

Data Breach Blog

Technical reporting and analysis on high-profile data breaches, how they happened, and how hackers are using the information mined from breaches.

View Topics

EasyJet Becomes the Latest Victim of Data Breach Impacting 9 Million Customers

May 30, 2020 8:25:32 AM By Stu Sjouwerman
In an apparent attack intent on stealing intellectual property, EasyJet announced that their customer’s personal data had been “accessed” as part of the attack.
Continue Reading

[Heads Up] Microsoft: Ransomware Gangs That Don't Threaten To Leak Your Data Steal It Anyway

Apr 29, 2020 3:34:37 PM By Stu Sjouwerman
That means you can from now on count a ransomware infection as a data breach with all the consequences that this brings. Moreover, the so-called "human-operated" ransomware gangs have ...
Continue Reading

Can COVID-19 Related Data Breach Worries Stop Your Mergers Or Acquisitions?

Apr 28, 2020 11:23:15 AM By Stu Sjouwerman
The WSJ just reported that the new coronavirus has thrown the M&A dealmaking into disarray. They said: "cybersecurity experts say the workplace upheaval caused by the pandemic will ...
Continue Reading

Seven Tips to Optimize Security

Apr 7, 2020 8:47:06 AM By Javvad Malik
Data breaches continue, phishing attacks are on the rise, and people responsible for security wake up in a cold sweat a few times a year worried they’re the next victims.
Continue Reading

70% to 90% of All Malicious Breaches are Due to Social Engineering and Phishing Attacks

Mar 31, 2020 8:50:03 AM By Roger Grimes
If you’ve heard me speak the last two years, read any of my articles, or watched any of my webinars, you’ve probably heard me say, “Seventy to ninety percent of all malicious breaches are ...
Continue Reading

[On-Demand] Never Assume Breach: Build a Data-Driven Defense Strategy to Secure Your Organization's Most Valuable Assets

Mar 4, 2020 8:47:52 AM By Stu Sjouwerman
Even the world’s most successful organizations have significant weaknesses in their IT security defenses, which today’s determined hackers can exploit at will. There’s even a term for ...
Continue Reading

Data Breach After Effects: Consequences and Learning Lessons

Mar 4, 2020 8:17:07 AM By Stu Sjouwerman
If you think your organization is safe from a data breach, think again. Data breaches could be deadly for any organization big or small.
Continue Reading

[Heads-up] Ransomware Criminals Hack An Accounting Company And Cause A Data Breach For Their Customers

Feb 24, 2020 7:00:00 AM By Stu Sjouwerman
Last December, a ransomware infection of Albany, New York-based accounting firm BST & Co. CPAs LLC exposed the confidential data of their customers, causing a data breach for one of their ...
Continue Reading

The Real-life Email You Never Want To Get From Your CEO Because The Feds Called...

Feb 21, 2020 12:56:19 PM By Stu Sjouwerman
From The Desk Of Mark *********, CEO, ********* Corporation
Continue Reading

DOJ Charges Hackers from the Chinese People Liberation Army with 2016 Equifax Data Breach

Feb 12, 2020 6:42:42 AM By Stu Sjouwerman
Four hackers have been charged with hacking the U.S. credit reporting agency where data on U.S. citizens and proprietary Equifax secrets were stolen.
Continue Reading

Most British Breaches Traced to Human Error

Feb 11, 2020 8:21:38 AM By Stu Sjouwerman
90% of data breaches in the UK during 2019 were caused by human mistakes, Infosecurity Magazine reports. CybSafe analyzed all the data breach reports received by the UK Information ...
Continue Reading

Ashley Madison Data Breach Comes Back to Haunt Customers with New Sextortion Scam

Feb 3, 2020 9:47:16 AM By Stu Sjouwerman
Just when you thought everyone forgot about participation on the ill-famed cheaters website, a new phishing scam looks to use the breached data as the basis for extorting the site’s users.
Continue Reading

Happy Hotel With a Sad Ending

Jan 15, 2020 8:42:17 AM By Javvad Malik
Tokyo, Japan-based Almex which operates the Japanese Happy Hotels announced it has been hacked and that customer data including email address, birth date, gender, phone number, log in, ...
Continue Reading

The Top 5 Eyeopener Strategies To Improve Your IT Defenses And Keep Bad Guys Out Of Your Network

Jan 9, 2020 4:16:06 PM By Roger Grimes
Last year, in 2019 according to CVEdetails, there were 12,174 new, publicly announced vulnerabilities. If that sounds like a high number, it’s a lot less than the previous two years. We ...
Continue Reading

December Content Update: Includes New Versions of Email Exposure Check Pro and Phishing Security Test Tools

Jan 8, 2020 5:36:43 PM By Stu Sjouwerman
Here are a few important updates to share with you from the month of December. 
Continue Reading

Smishing and Deepfakes Top the List of Cyber Attack Methods Expected in 2020

Jan 7, 2020 8:54:30 AM By Stu Sjouwerman
You want to know what to expect from data breaches, phishing attacks, and other calculated methods in 2020? There’s no better source than Experian’s seventh-annual Data Breach Industry ...
Continue Reading

Wawa Data Breach Class Action Filed

Jan 3, 2020 8:48:38 AM By Stu Sjouwerman
There was a massive data breach suffered by Wawa, a convenience store chain of more than 850 stores around the country. Wawa had recently disclosed that it had suffered a data breach that ...
Continue Reading

Have Your Users Been Exposed in the 8.5 Billion Breached Records This Year?

Dec 10, 2019 9:00:00 AM By Stu Sjouwerman
Data breaches are getting bigger, the bad guys are getting more cunning, and the amount of compromised data is unfortunately continuing to rise. According to RiskBased Security, breach ...
Continue Reading

IT Budgets Are on the Rise in Part Due to Organizational Concerns for Security

Nov 18, 2019 7:00:00 AM By Stu Sjouwerman
Security remains a primary driver as organizations work to establish budgets that keep IT cutting edge, competitive, and secure, according to new data from Spiceworks.
Continue Reading

A Majority of Organizations Experience Breaches Despite a Majority Saying They Are Prepared to Defend Against Them

Nov 18, 2019 7:00:00 AM By Stu Sjouwerman
The mismatch of signals by IT organizations shows a potential overestimation on IT’s part about its ability to prevent and protect against new cyberthreats.
Continue Reading
Subscribe

Search Our Blog


Ransomware Has Gone Nuclear Webinar

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews