Stir Friday Recap - Security News From January 2019
We’re doing something a little different with Stir Friday in 2019 here on the Nuix blog. Rather than deliver a (mostly) weekly article recapping the stories from our email newsletter, we’re going to highlight a few of the biggest stories that came over the past month, along with commentary.
If you want to get more timely access to these stories, be sure to subscribe to receive our Friday emails with all the key stories from the week.
CYBERSECURITY STORIES FROM THE PAST MONTH
The French National Data Protection Commission levied a $57 million fine against Google for violating provisions of GDPR.
While there haven’t been very many fines so far for GDPR violations, this is by far the largest.
777,904,991 unique email addresses and over 21 million unique passwords were recently posted to a hacking forum.
To be clear, this information isn’t from a single breach, but rather multiple intrusions that led to this massive collection.
A cache of documents that affected German Chancellor Angela Merkel, as well as representatives of all the main parliamentary groups except the right-wing AfD, was accessed and released on January 3.
Just to make things interesting, the data was released a little each day to coincide with the advent calendar.
More than 40 state attorneys general have announced a $1.5 million settlement with the Neiman Marcus Group LLC over a data breach disclosed in 2014.
This give you an idea of how long it can take to get to civil penalties over major breaches.
Details of an estimated 30,000 Australian civil servants were stolen when a directory was downloaded by an unauthorized third party.
That sure didn’t take long. In reality, though, there are probably thousands of active intrusions going on at any minute of any day, so the calendar change was more symbolic than anything.
A Chinese national was arrested in the US last week for allegedly stealing intellectual property from a US petroleum company where he was employed.
Anyone interested in security, especially the “insider threat,” should read this FBI criminal complaint. It isn’t overly technical, and there are multiple great lessons to be learned from it.
SUBSCRIBE FOR MORE INSIGHTS AND DETAILS
If you’d like to receive the full breakdown and commentary on the biggest cybersecurity stories in the news, subscribe to the Stir Friday newsletter, delivered straight to your mailbox.