Stir Friday Sneak Peek – Security News Update for November 30, 2018

Here’s this week’s preview of our “Stir Friday” security awareness newsletter, featuring a look at the major cybersecurity news stories from the past week.

Stir Friday

Cybersecurity Stories from the Past Week

Marriott: Data on 500 Million Guests Stolen in 4-Year Breach

Marriott International announced that personal and financial information on as many as 500 million customers was stolen in a data intrusion.

I know most of us are getting pretty numb to data loss numbers, but just let that sink in for a minute—half a BILLION possible victims.

Atrium Health data breach exposed 2.65 million patient records

In the last week of September, an unauthorized threat actor was able to gain access to databases containing the records, which included names, home addresses, dates of birth, insurance policy information, service dates, medical record numbers, and account balances.

Calling Dr. HIPAA!

Uber’s bill for 2016 breach and cover-up rises by $1M+ on EU fines

Two months ago, Uber agreed to pay $148 million to resolve legal inquiries pertaining to the breach in the U.S. Last week, the UK’s Information Commissioner’s Office announced they would fine Uber £385,000 and the Dutch data protection watchdog fined Uber €600,000.

This was connected to the 2016 breach that affected 57 million customers.

Knuddels Flirt App Slapped with Hefty Fine After Data Breach

1.8 million accounts in Germany’s chat service app Knuddels were affected this past summer. The Baden-Wurttemberg Data Protection Authority announced that under GDPR, the company would be fined €20,000.

Attackers compromised 808,000 email addresses and 1.8 million usernames and passwords. As a result, Knuddels is the first German company to be fined under GDPR.

Data leak leaves tens of millions of text messages exposed

A database of tens of millions of text messages managed by Voxvox, based in San Diego, CA, was found to be discoverable and unprotected.

Luckily (so far), the vulnerability was discovered by a security researcher.

Subscribe for More Insights and Details

If you’d like to receive the full breakdown and commentary on the biggest cybersecurity stories in the news, subscribe to the Stir Friday newsletter, delivered straight to your mailbox … you guessed it, every Friday!

Security & Intelligence
Posted on November 30, 2018 by David Smith