Stir Friday Sneak Peek – Security News Update for November 30, 2018
Here’s this week’s preview of our “Stir Friday” security awareness newsletter, featuring a look at the major cybersecurity news stories from the past week.
Cybersecurity Stories from the Past Week
Marriott International announced that personal and financial information on as many as 500 million customers was stolen in a data intrusion.
I know most of us are getting pretty numb to data loss numbers, but just let that sink in for a minute—half a BILLION possible victims.
In the last week of September, an unauthorized threat actor was able to gain access to databases containing the records, which included names, home addresses, dates of birth, insurance policy information, service dates, medical record numbers, and account balances.
Calling Dr. HIPAA!
Two months ago, Uber agreed to pay $148 million to resolve legal inquiries pertaining to the breach in the U.S. Last week, the UK’s Information Commissioner’s Office announced they would fine Uber £385,000 and the Dutch data protection watchdog fined Uber €600,000.
This was connected to the 2016 breach that affected 57 million customers.
1.8 million accounts in Germany’s chat service app Knuddels were affected this past summer. The Baden-Wurttemberg Data Protection Authority announced that under GDPR, the company would be fined €20,000.
Attackers compromised 808,000 email addresses and 1.8 million usernames and passwords. As a result, Knuddels is the first German company to be fined under GDPR.
A database of tens of millions of text messages managed by Voxvox, based in San Diego, CA, was found to be discoverable and unprotected.
Luckily (so far), the vulnerability was discovered by a security researcher.
Subscribe for More Insights and Details
If you’d like to receive the full breakdown and commentary on the biggest cybersecurity stories in the news, subscribe to the Stir Friday newsletter, delivered straight to your mailbox … you guessed it, every Friday!