Extra, extra! It’s a new edition of The Breach Report.
As major breaches happen, we’ll skim for the most important data points from the most trusted resources and publish them here. Here’s what’s happening in November…
Whole Foods Breach Update:
- You gotta watch those bells and whistles. The compromise didn’t happen in the store itself, according to the Wall Street Journal, but rather in the taprooms, restaurants and other ‘venues’ located within the stores.
- This particular breach was one of the first times the term “breach fatigue” entered mainstream reporting. Because the Whole Foods hack happened right on the heels of the headline-grabbing Equifax breach, experts say many customers might not have heard about it or have become desensitized to breaches.
- According to Whole Foods, the compromise has been dealt with and security shored up. This was done by completely replacing the affected Point of Sale systems. Whole Foods was also quick to point out that this breach in no way affects customers of their parent company, Amazon.
Australian Government Breach Update:
- The Canberra Times reports that over 50,000 Australian worker identities have been compromised. How? A private contractor caused the massive leak that exposed names, passwords, ID data, phone numbers, as well as credit card numbers and corporate information — including salaries and expenses.
- Those pesky people! It’s been revealed that – as is often in the case in breaches – it wasn’t the tech at fault. It was ‘human error.’ IDG’s magazine ARN says there is “evidence to suggest that it may have been just one contractor behind the breach.”
- Rules and regs. More specifically, “The Privacy Amendment (Notifiable Data Breaches) Act 2017.” This will go into effect on February 23, 2018 and seeks to protect Australian citizens’ personal data, and to ensure they are informed of breaches in a timely manner.
- A director of a cyber risk research firm found that “…anyone using Accenture’s Cloud Platform was at great risk” due to the mountain of private data he found – utterly unprotected – on four of their cloud servers.
- The companies put at risk were plentiful…and powerful. According to UpGuard, the risk research firm who identified this near-miss, the list of the vulnerable “include(s) 94 companies on the Fortune Global 100 list.”
- Time to get a little more hygienic. Computer Weekly reports that exposures such as Accenture’s latest ones (and Equifax’s massive one last month) could have been prevented with “basic cyber hygiene”
How Safe is *Your* Enterprise?
Knowledge is power. And checklists are empowering! Find out how vulnerable your company might be right now.
Download our new 12-page eBook “Check Your Armor: What’s Your Most Vulnerable Cybersecurity Spot?”
In it, we supply you with a checklist of questions to ask yourself – and your IT department.