Data breaches and other scary 2019 events- Special Halloween post
It’s that time of the year again, where the ghosts come out of the cupboard and the witches cackle, but it’s also a good time to reflect on what 2019 has brought to us so far. These are the scariest parts of cyber security from 2019 and the scale of how scary they actually are.
We will start off with a post on Gizmodo. The post highlights that in January 2019 there was a collection of information for sale, which totalled 773 million emails and 21 million passwords. This was stated as being the largest collection of breached data ever.
The year has then proceeded to leave no industry unturned. In the Wikipedia list of breaches in 2019 so far, we can see that anything from social networks, to online shopping vendors through to health care and governments have been targeted. The breaches have occurred due to different reasons which really enforce that security on systems is paramount and that if a hacker is determined they will find a way in. The types of breaches listed include (poor security, hacked, inside job, accidental publication, and misconfiguration), all of which can be leveraged to exploit businesses. It’s a scary world and once you start putting information into computers it becomes scarier without the correct protection.
The biggest breach so far was First American Corporations, and that included 885 million records. This was caused by poor security/configuration on one of their websites, that enabled anyone with an internet browser to access records which included information such as bank account numbers, statements, mortgage and tax records etc. Highly personal identifiable information, and the consequences? Well this caused an immediate drop in share prices of about 7% once the news hit, and took around 4-5 months to fully recover.
Now, with the recent introduction of GDPR in 2018. The fines associated, should be enough to put fear into any business, so how have these been applied so far? The rules state that a fine can be up to 20million euros, or up to 4% of global turnover, whichever is higher.
In July 2019, we saw that British Airways was hit with a £183 million fine. This was large, and would have put most companies into serious financial difficulties for a while, but considering the size of British Airways, it will have likely only affected their profit margins for the year.
The reality of it all, is that if the hacker doesn’t break a business into pieces due to the repercussions of being breached/hacked then perhaps the industry regulators may fine it so harshly that it will fail. This is scary! Perhaps next time your business looks at a project, the first thing to ask is going to be “what about the security?”. If you don’t, then next year the company you work for may be on these lists.
Happy Halloween! Hopefully for you, the lights will stay on, and candles wont be needed to read the UPS displays as you run through a night of ghosts and ghouls.
- What is Phishing and what can you do to prevent it?
- Found malware, now what do you do?
- How to get your cyber security budget approved by the board
- The TechForce Sponsorships
- How to start a career in the security industry
- Protecting your business in the cyber security era
- Secure Your Supply Chain
- Case study: British Airways Fined £183.4million for Data Breach
- The Silver Bullet in Cyber Security
- Fake invoice email scams and Office 365
- How to apply for the Cyber Essentials Voucher Scheme
- What is Business Email Compromise (BEC) and how to stop it
- Everything you need to know about Cyber Essentials
- Cyber Essentials Demystified
- How to choose a Security Awareness Platform
- 6 Quick and Easy Email Security Tips for Dummies
- Hackers On Tour
- How to share passwords safely in your Small Business
- In the news - Warning. North Sea firms likely already attacked
- 10 Steps to Cyber Security
- 6 Top Tips to Prevent Cyber Attacks
What is Phishing and what can you do to prevent it?
Phishing is a type of online scam where criminals send an email that appears to be from a legitimate company and ask you to provide sensitive informationMore
Found malware, now what do you do?
You’ve found some malware on your computer, so what should you do next? What’s the best approach? We’ll run through a few things that will greatly assist in identifying and isolating the malwareMore
How to get your cyber security budget approved by the board
There’s a few ways to improve the approach to the company board that will significantly help to get them onboard with improving cyber security, especially when linking this to risk mitigation.More
The TechForce Sponsorships
Are you interested in kickstarting your career in cybersecurity? You could be eligible for funding towards the CompTIA Security+ exam, covering up to 100% of the exam cost.More
FOR LATEST UPDATES SUBSCRIBE HERE: