Brand phishing attack email

A new CheckPoint report shows that 44 percent of all phishing attacks involve emails that use Microsoft as the spoofed brand. Microsoft was the brand used as bait in 19 percent of all forms of phishing last quarter.  Barnes & Noble acknowledged what they initially thought was a systems error earlier in October turned out to be a cyberattack on some of its systems.  Cyberthieves […]

While data breaches are down, a single ransomware attack at Blackbaud exposed information from at least 247 organizations that have issued their own breach notices  SAN DIEGO, October 14, 2020 – Today, the Identity Theft Resource Center® (ITRC), a nationally recognized non-profit organization established to support victims of identity crime, released its U.S. data breach findings for […]

Shopify and Instacart recently suffered data breaches from insider attacks, stressing the importance of not allowing too much access to employees.  Consumers who receive a breach notice regarding either data breach should follow the advice. They should also change their username and password to any breached accounts, add two-factor authentication if possible, and watch for attempts like phishing emails looking to collect personal information.  Businesses should reduce […]

Data breaches are down 30 percent in Q3 of 2020 compared to Q3 of 2019 when you look at the Blackbaud ransomware attack as a single event.  Data breaches are down 10 percent in Q3 of 2020 compared to Q3 of 2019 when you look at the Blackbaud ransomware attack as a series of data breaches.   Regardless of how […]

Shopify recently announced that two support team members allegedly committed insider theft and obtained transactional records of at least 100 merchants.   Data exposed in the Shopify data compromise includes names, physical addresses, email addresses, products, and services purchased.  Businesses should consider reducing their privilege access based on the employee’s status, watch data movement across the company, and have tools to give visibility to file activities.  Consumers should change their usernames and passwords for their Shopify account, keep […]

A recent report by Comparitech says that six percent of all Google Cloud environments are misconfigured and left open to the web for anyone to see.   Dunkin Donuts settled in a lawsuit with the State of New York after being accused of not taking appropriate action in response to two cyberattacks dating back to […]

Cense.Ai left a temporary data storage repository online, accessible to anyone with a web browser. It led to the exposure of nearly 2.6 million records, including sensitive data and other personally identifiable information (PII). A recent data breach of Freepik, a photos and graphics website, happened when hackers used a known software vulnerability to gain access to […]

Fortnite is one of the most popular battle royale games on the market. People of all ages play the game to work their way towards the center of the map. However, there is one thing about Fortnite, and other games, that many gamers are not aware of: the massive amounts of gaming data that is […]

There are different types of data breaches, but they all have frustrating, as well as potentially devastating impacts. On this week’s Weekly Breach Breakdown podcast, we are taking a look at the difference between a data breach that exposes consumer information and a data breach that reveals a company’s intellectual property or trade secrets; companies […]

Updated as of 10/9/2020- The recent social-good relationship management software data breach has nonprofit organizations left to figure out what to do next. Blackbaud, a cloud software company, used primarily by nonprofits, announced that they were the victim of a ransomware attack. Also, according to a filing with the U.S. Securities and Exchange Commission, Blackbaud acknowledges that a ransomware […]