Security Awareness Training Blog

Data Breach Blog

Technical reporting and analysis on high-profile data breaches, how they happened, and how hackers are using the information mined from breaches.

Don’t Fall Victim to Breach Fatigue

People shouldn’t let news of data breaches dissuade them from trying to protect their information, according to security researcher Ray [REDACTED]. On the CyberWire’s Hacking Human ...
Continue Reading

Extremely Embarrassing 250,000-record Data Breach At Hookers.nl

The data of 250,000 users of Hookers.nl, a forum where experiences with prostitutes and escorts are exchanged, have been stolen and offered for sale on the internet. It concerns e-mail ...
Continue Reading

The Cost of a Data Breach is Expected to Rise by Two-Thirds Over the Next Five Years

The increase in attack effectiveness and remediation costs, along with new compliance fines are causing the cost of a data breach to rise significantly.
Continue Reading

Scam Of The Week: Yahoo Massive Data Breach Settlement Phishing Attacks

Yahoo is close to reaching a $117.5 million settlement in a class-action lawsuit over a series of data breaches that affected users between 2012 and 2016 — and your employees are ...
Continue Reading

99 Percent Of All Misconfigurations In The Public Cloud Go Unreported

Charlie Osborne at ZDNet wrote: "Today's data breaches often seem to be caused not just by malware infections or external threat actors, but human error, insiders with an ax to grind, and ...
Continue Reading

Employees Are the Reason 70% of Financial Companies Have Suffered Security Incidents in the Last Twelve Months

The latest data from cybersecurity vendor Clearswift shows untrained employees are clearly the source of incidents that plague an overwhelming majority of companies in the financial ...
Continue Reading

Financial Phishing Campaigns on the Rise

More than 1900 new potential bank phishing sites were registered in the first half of 2019, according to researchers at NormShield. Based on the increase in new suspicious domains ...
Continue Reading

Report: Data Breach in Biometric Security Platform Affecting Millions of Users

Led by internet privacy researchers Noam Rotem and Ran Locar, vpnMentor’s team recently discovered a huge data breach in biometrics security platform BioStar 2. Once stolen, fingerprint ...
Continue Reading

3 Important Facts to Take Away From the New Data Security Law

By Lecio De Paula, Jr., Director of Data Privacy, KnowBe4. New Hampshire joins Ohio, South Carolina, and Michigan in enacting a new data security law directed at insurers modeled after ...
Continue Reading

Bad Guys Exploit CapitalOne Breach to Push Backdoor Trojan

The bad guys are now exploiting news of the CapitalOne breach to push a malicious backdoor trojan via a phishing email purporting to offer a Windows Security Update. See the attached ...
Continue Reading

5 Things You Need to Know About Facebook’s $5 Billion Fine

By Lecio De Paula, KnowBe4's Director of Data Privacy. On July 24, 2019, it was announced that Facebook, Inc. will pay a 5 billion dollar penalty to the U.S. Federal Trade Commission ...
Continue Reading

You Don't Want *THAT* In Your Wallet

Capital One has announced a data breach that has exposed the personal information of 106 million people that includes transaction data, credit scores, payment history, balances, and for ...
Continue Reading

Is Equifax Paying Up To 700 Million... Or Is It 1.4 Billion?

In a settlement with the FTC, consumers affected by the breach are eligible for up to $20,000 in a cash settlement, depending on damages they can prove. But different news sources claim ...
Continue Reading

Attacker’s Use of OneDrive as a Malicious File Host Jumps Over 3200% in Q1

The need for reputable hosting services to make phishing scams involving malicious files look legitimate has caused a rise in popularity for Microsoft’s cloud-based file sharing service.
Continue Reading

Evite Invites Over 100 Million People to Their Data Breach

Larry at Bleepingcomputer wrote: "The data breach monitoring service Haveibeenpwned.com has added a database dump of almost 101 million Evite users who had their information exposed when ...
Continue Reading

The Stock Market Doesn’t React Well to Data Breaches

The latest data from UK-based research firm, Comparitech, shows that organizations who suffer a data breach continue to suffer in the stock market well after.
Continue Reading

Massive Cyberheist Bankrupts Medical Debt Collector

AMCA, a medical billing collections agency that was hacked last year in an incident believed to impact millions of medical patients is now seeking a federal bankruptcy court’s protection ...
Continue Reading

[Heads-Up] How Hackers Use Ransomware To Hide Data Breaches And Other Devastating Attacks

Different sources claim that ransomware attacks are either going up or going down. The very real threat remains though and it is clear that the bad guys are moving from consumers as their ...
Continue Reading

“Monster” Data Breaches Result in an Average Cost of $347 Million

Data breaches in the hundreds of millions of records have made the news over the last two years. The latest report from Bitglass covers the results and repercussions of the breaches.
Continue Reading

Get the latest about social engineering

Subscribe to CyberheistNews