Data Breach
Data Breach | News, how-tos, features, reviews, and videos
Cash App customer investment data hacked
The backers of the popular consumer payments app announced Monday that millions of customers are being contacted to warn that some of their personal information may have been compromised.
LAPSUS$ ransomware group claims Okta breach
The ransomware group claims that it has had access to customer records since January 2022; Okta says there is no evidence of ongoing malicious activity.
SEC plans four-day cybersecurity breach notification requirement
The US stock market regulator wants to tighten reporting requirements for security breaches at publicly traded firms.
Extortion group teases 190GB of stolen data as Samsung confirms security breach
LAPSUS$ data extortion group claims to have a huge collection of confidential data stolen from Samsung Electronics, which has confirmed a security breach.
Nvidia hackers release code-signing certificates that malware can abuse
Researchers have already found example of malicious files signed with the stolen certificates.
Purported massive leak of Russian soldiers' data could sink morale, digital security
The publication of personal data on 120,000 Russian soldiers, if accurate, could provide a means to demoralize troops in Ukraine and make them targets for cyber campaigns.
The biggest data breach fines, penalties, and settlements so far
Hacks and data thefts, enabled by weak security, cover-ups or avoidable mistakes have cost these companies a total of nearly $1.3 billion and counting.
European nations issue record €1.1 billion in GDPR fines
Authorities across Europe issued huge amounts in GDPR fines during 2021. Luxembourg and Ireland took up the top spots, replacing Italy and Germany.
A tale of two breaches: Bunnings and the South Australia government
Minimising data collection limited the data exposure from third-party compromise at one of the victims.
Three recent events prove the need for an insider risk playbook
Pfizer, Ubiquiti and Code42 all faced real or potential insider threats that could have been a lot worse if they did not have a plan to deal with them.
The emotional stages of a data breach: How to deal with panic, anger, and guilt
Intense situations require both the security experts and stakeholders to be calm and focused, but that is easier said than done. This advice can help.
Supply chain attacks show why you should be wary of third-party providers
The weak link in your enterprise security might lie with partners and suppliers. Here’s how to understand and mitigate that risk.
What is Magecart? How this hacker group steals payment card data
Hacking groups that make up Magecart are effective and persistent at stealing customer and payment card data through skimmers. Here's how they work and what you can do to mitigate the risk.
Ubiquiti breach an inside job, says FBI and DoJ
Investigators claim Ubiquiti employee Nikolas Sharp stole company data and then played the role of whistleblower to draw attention away from is actions.
Cyber insurance explained and why you need it
Cyber insurance can't protect your organization from cybercrime, but it can keep your business on stable financial footing should a significant security event occur.
GoDaddy WordPress data breach: A timeline
Domain registrar GoDaddy recently announced a data breach impacting 1.2 million customers via its Managed WordPress hosting environment. Here's how the breach is unfolding.
Australian firms are confident about withstanding cyberattacks—should they be?
A survey shows breach costs have gone down, but the reasons are unclear. And the cost of customer data lost through supplier breaches is rising.
5 steps to security incident response planning
Most firms will experience a breach or vulnerability that exposes sensitive data. Minimizing impact on business and reputation depends on having a strong response plan before an incident happens.