Data security breaches

Get the latest information on enterprise security data breaches. Learn about data breach laws and regulations, best practices for data breach notification and response plans, the risks of exposed corporate data and personally identifiable information.

Top Stories

Feature 05 Nov 2021
The 10 most common ERP security issues and ways to fix them

Today's ERP systems are exposed like never before. Learn about the most common ERP security issues companies are facing and how IT and security teams can address them. Continue Reading
News 28 Oct 2021
Twitter details internal Yubico security key rollout

Following last year's breach, Twitter obtained 100% security key enrollment from its 5,500 internal employee accounts within a month of the cutover date. Continue Reading

Definition 27 Sep 2022

rainbow table

A rainbow table is a password hacking tool that uses a precomputed table of reversed password hashes to crack passwords in a database. Continue Reading
Definition 24 Nov 2021

black hat hacker

A black hat hacker has been historically used to describe one who has malicious intent -- such as theft of information, fraud or disrupting systems -- but increasingly, more specific terms are being used to describe those people. Continue Reading
Definition 23 Nov 2021

cookie poisoning

Cookie poisoning is a type of cyber attack in which a bad actor hijacks, forges, alters or manipulates a cookie to gain unauthorized access to a user's account, open a new account in the user's name or steal the user's information for purposes such as identity theft. Continue Reading
Feature 05 Nov 2021

The 10 most common ERP security issues and ways to fix them

Today's ERP systems are exposed like never before. Learn about the most common ERP security issues companies are facing and how IT and security teams can address them. Continue Reading
News 28 Oct 2021

Twitter details internal Yubico security key rollout

Following last year's breach, Twitter obtained 100% security key enrollment from its 5,500 internal employee accounts within a month of the cutover date. Continue Reading
Tip 27 Oct 2021

5 IT security policy best practices

As businesses and technologies grow and evolve, it's important IT security policies do, too. Follow these five best practices to ensure policies are fresh and relevant. Continue Reading
News 18 Oct 2021

Sinclair Broadcast Group suffers ransomware attack, breach

The media giant disclosed a ransomware attack Monday that caused massive disruptions across networks and saw threat actors obtain corporate data. Continue Reading
News 15 Oct 2021

Accenture sheds more light on August data breach

The IT services giant disclosed in an SEC filing that threat actors stole and leaked proprietary data during a LockBit ransomware attack earlier this year. Continue Reading
News 14 Oct 2021

Google digs into Iran's APT35 hacking group

Covert phishing tactics and cleverly disguised notifications are among the calling cards of the increasingly sophisticated operation aimed at Iran's opponents. Continue Reading
News 06 Oct 2021

Cohesity backup integrates with Cisco SecureX

Cohesity's anomaly detection and recovery functions can be accessed in Cisco SecureX, allowing greater visibility and quicker response time during a ransomware attack. Continue Reading
News 06 Oct 2021

Twitch confirms data breach following massive leak

Leakers claim to have stolen almost 6,000 internal Git repositories, including 'the entirety of Twitch.tv' and content creator payouts. Continue Reading
News 23 Sep 2021

Autodiscover flaw in Microsoft Exchange leaking credentials

Guardicore found that exploiting a design flaw in Autodiscover allowed it to capture more than 372,000 Windows domain credentials and nearly 97,000 unique application credentials. Continue Reading
News 22 Sep 2021

Turla deploying 'secondary' backdoor in state-sponsored attacks

Cisco Talos said hackers connected to the Russian APT Turla are using a new piece of malware to get persistent access on infected networks in the U.S., Germany and Afghanistan. Continue Reading
News 22 Sep 2021

Marcus & Millichap hit with possible BlackMatter ransomware

The real estate firm confirmed in a SEC filing this week that it had suffered a recent cyber attack but claimed there was no 'material disruption' to its business. Continue Reading
Feature 14 Sep 2021

Why companies should use AI for fraud management, detection

AI is involved in many cybersecurity processes. Now it's making inroads in fraud management and detection. The benefits, however, are not without AI's nagging bias challenge. Continue Reading
News 02 Sep 2021

FTC drops the hammer on SpyFone for privacy violations

The FTC has decried SpyFone, a remote tracking app for mobile phones, as stalkerware and ordered it to notify all individuals who were tracked by the app. Continue Reading
News 27 Aug 2021

T-Mobile offers details of data breach that affected 40M

According to T-Mobile, the hackers who stole its customer database had knowledge of the company's network and testing setup. The hack was a carefully planned network breach. Continue Reading
News 24 Aug 2021

4 emerging ransomware groups take center stage

Four ransomware operations -- AvosLocker, Hive, HelloKitty and LockBit 2.0 -- have popped up on the radar of researchers with Palo Alto Network's Unit 42 team. Continue Reading
News 18 Aug 2021

T-Mobile breach exposes data for more than 40M people

The telecom giant confirmed reports that its network was breached by a threat actor who stole personal data on more than 40 million current, former and prospective customers. Continue Reading
News 16 Aug 2021

FBI watchlist exposed by misconfigured Elasticsearch cluster

A terrorist watchlist was found in an exposed database, and security researcher Bob Diachenko says there is no way of knowing just how long it was open to the public. Continue Reading
News 12 Aug 2021

Months after the Accellion breach, more victims emerge

The Accellion breach occurred last December, but more victims have come to light in recent weeks as investigations, notifications and disclosures stretch on through the summer. Continue Reading
News 11 Aug 2021

Accenture responds to LockBit ransomware attack

The LockBit ransomware crew claims to have stolen data from IT services and consulting giant Accenture, but the company said no customer systems were affected in the attack. Continue Reading
News 11 Aug 2021

Hackers selling access to breached networks for $10,000

Network access is a closely-guarded commodity in underground hacker forums, with some sellers not even revealing the names of their victims until money has changed hands. Continue Reading
News 06 Aug 2021

Amazon GDPR fine signals expansion of regulatory focus

Amazon's $887 million GDPR fine likely stems from consumer consent and may indicate the EU is moving beyond data breaches and zeroing in on data practices. Continue Reading
News 26 Jul 2021

Coveware: Median ransomware payment down 40% in Q2 2021

Coveware CEO Bill Siegel said that the efficacy of using data leak threats to obtain ransomware payments has gone down because 'you don't get anything in return when you pay.' Continue Reading
News 21 Jul 2021

U.K. man arrested in connection with 2020 Twitter breach

A 22-year-old U.K. resident was arrested in Spain and will face extradition on charges related to a social engineering operation that netted big-name Twitter accounts. Continue Reading
News 14 Jul 2021

DPU market heats up with tech from Nvidia, Intel

Nvidia will integrate its Bluefield-2 DPU with Palo Alto Network's virtual firewall to boost performance and offer better security to handle the onslaught of cloud applications. Continue Reading
News 28 Jun 2021

DarkSide ransomware funded by cybercriminal 'investors'

New ransomware gangs, such as DarkSide, are receiving cryptocurrency investments from their peers and are poised to make life difficult for enterprises and law enforcement alike. Continue Reading
News 21 Jun 2021

Biden proposes critical infrastructure safe zones for hacking

The U.S. wants Russia to agree to make critical infrastructure targets off limits to hacking, but some infosec experts are skeptical such an agreement can be enforced. Continue Reading
News 14 Jun 2021

Accellion breach raises notification concerns

Victims of the breach continue to emerge, and one customer said it could have acted sooner, but a critical alert about a zero-day never left Accellion's email system. Continue Reading
News 11 Jun 2021

Securolytics COO charged in Georgia hospital cyber attack

Details on the cyber attack are scarce, but according to the indictment, Vikas Singla allegedly attempted to steal data and disrupt the hospital's phone system. Continue Reading
Feature 03 Jun 2021

How to handle social engineering penetration testing results

In the wake of conducting social engineering penetration testing, companies need to have a plan ready to prevent or minimize phishing, vishing and other attacks. Continue Reading
Feature 03 Jun 2021

How to ethically conduct pen testing for social engineering

Author Joe Gray explores his interest in pen testing for social engineering, what it means to be an ethical hacker and how to get started in the career. Continue Reading
News 02 Jun 2021

ExaGrid revealed as latest Conti ransomware casualty

The data backup vendor appears to have paid a $2.6 million ransom after Conti threat actors breached its corporate network and stole internal documents. Continue Reading
News 27 May 2021

DHS opens valve on new pipeline security requirements

The U.S. government has put forward a trio of new cybersecurity requirements for companies that operate oil and gas pipelines, including incident reporting and risk assessment. Continue Reading
News 26 May 2021

US agencies lack supply chain best practices post-SolarWinds

Vijay D'Souza, the GAO's director of IT and cybersecurity, said during a joint hearing that 'none of the agencies have fully implemented our recommendations.' Continue Reading
News 18 May 2021

Attorneys share worst practices for data breach response

Angry emails, bad jokes and sloppy reports can all lead to legal headaches following a data breach, according to a panel of experts at RSA Conference 2021. Continue Reading
News 13 May 2021

Verizon DBIR shows sharp increase in ransomware attacks

According to Verizon's latest Data Breach Investigations Report, 60% of ransomware cases involved either direct installation or installation via desktop sharing software. Continue Reading
News 12 May 2021

Funding is key to strengthening national cybersecurity

In the wake of the Colonial Pipeline ransomware attack, national cybersecurity experts make the case for additional funding during a Senate hearing. Continue Reading
Definition 11 May 2021

industrial espionage

Industrial espionage is the covert, and sometimes illegal, practice of investigating competitors to gain a business advantage. Continue Reading
News 05 May 2021

Twilio discloses breach caused by Codecov supply chain hack

Twilio utilizes Codecov tools including the previously compromised Bash Uploader script. It said that a "small number" of customer emails were potentially exposed. Continue Reading
News 28 Apr 2021

Codecov breach raises concerns about software supply chain

So far, only HashiCorp has disclosed a breach connected to the attack on Codecov, but threat researchers have drawn parallels to the SolarWinds supply chain attacks. Continue Reading
News 27 Apr 2021

Rise in ransom payments may fuel more dangerous attacks

A new report from Coveware found that ransom payments increased significantly in Q1 this year, as did ransomware actors' use of software vulnerabilities in attacks. Continue Reading
Guest Post 16 Apr 2021

Companies must train their SOC teams well to prevent breaches

SOC teams can have all the latest and greatest cybersecurity tools, but unless they have the proper training, it won't be enough to mitigate an attack. Continue Reading
Feature 05 Apr 2021

Can a new DHS cybersecurity strategy help the private sector?

The U.S. Department of Homeland Security outlines federal plans to improve public and private cybersecurity, but analysts advise caution over strategies that can't be mandated. Continue Reading
Quiz 30 Mar 2021

Data loss prevention quiz: Test your training on DLP features

Data loss prevention tools can help infosec manage insider threat, shadow IT and compliance initiatives. Test your know-how with this DLP quiz. Continue Reading
News 19 Mar 2021

Acer hit by apparent attack from REvil ransomware group

Acer told SearchSecurity in a statement that it has 'reported recent abnormal situations observed to the relevant law enforcement.' However, it did not confirm a ransomware attack. Continue Reading
Feature 11 Mar 2021

After Oldsmar: How vulnerable is US critical infrastructure?

Following the highly publicized breach of a water treatment plant in Oldsmar, Fla., industrial security experts discuss the state of critical infrastructure risk in 2021. Continue Reading
Feature 09 Mar 2021

Explore 5 business email compromise examples to learn from

Gift cards are for gifts, never for payment. Explore real-world examples of business email compromise to learn common attack patterns and red flags. Continue Reading
News 03 Mar 2021

Accellion FTA attacks claim more victims

More details have emerged about the Accellion FTA attacks since the December disclosure, including possible threat groups behind the breach and a growing list of victims. Continue Reading
Feature 01 Mar 2021

Malware researcher speculates on the future of ransomware

Abhijit Mohanta, author of 'Preventing Ransomware,' opines on the future of ransomware and discusses why this attack is favored among cybercriminals. Continue Reading
News 25 Feb 2021

Vastaamo breach, bankruptcy indicate troubling trend

The blackmailing of patients directly, as well as the resulting bankruptcy of Vastaamo Psychotherapy Centre, could single a shift in cyber crime tactics. Continue Reading
Tip 24 Feb 2021

How to prevent supply chain attacks: Tips for suppliers

Every company, large and small, must assume it is a target in the supply chain. Suppliers should follow these best practices to keep themselves and their customers protected. Continue Reading
Tip 23 Feb 2021

5 cyber threat intelligence feeds to evaluate

Cyber threat intelligence feeds help organizations up their security game. While the 'best' feeds vary depending on a company's needs, here are five leading services to consider. Continue Reading
Tip 23 Feb 2021

How to achieve security observability in complex environments

Security observability is a novel approach to incident detection that goes beyond traditional monitoring. Read on to learn if this emerging strategy is right for your enterprise. Continue Reading
News 17 Feb 2021

Wide net cast on potential Accellion breach victims

While Accellion fixed the zero-day vulnerability within 72 hours and said the breach affected 'less than 50 customers,' the attack's impact has expanded two weeks after the disclosure. Continue Reading
Feature 08 Feb 2021

5 cybersecurity lessons from the SolarWinds breach

Ransomware attack simulations, accessing enterprise logs and pen testing software code are among the best practices cybersecurity pros suggest following the SolarWinds breach. Continue Reading
News 02 Feb 2021

SonicWall confirms zero-day vulnerability on SMA 100 series

After testing NCC Group's findings, SonicWall 'confirmed their submission as a critical zero-day in the SMA 100 series 10.x code, and are tracking it as SNWLID-2021-0001.' Continue Reading
Guest Post 25 Jan 2021

4 ways to minimize the risk of IT supply chain attacks

Mark Whitehead breaks down the importance of taking a zero-trust cybersecurity approach when it comes to protecting networks and data accessible by third-party partners. Continue Reading
News 19 Jan 2021

FBI warns against vishing attacks targeting enterprises

Though the FBI vishing warning references attacks that began in December 2019, the alert is reminiscent of the Twitter social engineering attacks that took place last July. Continue Reading
Tip 20 Nov 2020

What are the biggest hardware security threats?

Hardware security threats -- and strategies to overcome them -- are evolving as enterprises increasingly install autonomous capabilities for smart building and IoT projects. Continue Reading
Guest Post 28 Oct 2020

Addressing the expanding threat attack surface from COVID-19

CISOs need to ensure they and their security teams are aware of the new threats created by many businesses expanding their attack surface with many employees still working remotely. Continue Reading
News 16 Oct 2020

Twitter hackers posed as IT staff, used VPN issues as a lure

A report by New York State's Department of Financial Services found that hackers breached Twitter's network by posing as IT support and obtaining credentials through vishing. Continue Reading
News 24 Sep 2020

Shopify discloses data breach caused by insider threats

Canadian e-commerce company Shopify disclosed a data breach involving two insider threats, but questions remain about the breach and how it was discovered. Continue Reading
News 17 Sep 2020

Gartner: Paying after ransomware attacks carries big risks

The average cost of a ransomware payment in Q1 2020 was $178,254, according to a session at Gartner's Security & Risk Management Summit -- and that doesn't include downtime cost. Continue Reading
News 31 Aug 2020

The Uber data breach cover-up: A timeline of events

The criminal charges against former Uber CSO Joe Sullivan were the latest development in the ongoing scandal over the ride-sharing company's concealment of a 2016 data breach. Continue Reading
News 24 Aug 2020

FBI and CISA issue vishing campaign warning

The FBI and CISA have issued a joint advisory related to a vishing campaign that began in mid-July, with numerous attacks that gained access to corporate VPN credentials. Continue Reading
News 21 Aug 2020

Former Uber CSO charged over 'hush money' payment to hackers

Joe Sullivan, who was fired by Uber in 2017, was charged by federal prosecutors for allegedly covering up a massive 2016 data breach at the ride-sharing company. Continue Reading
News 11 Aug 2020

Healthcare CISO offers alternatives to 'snake oil' companies

Indiana University Health CISO Mitchell Parker discussed internal risk assessments, security snake oil salesmen and more at his Black Hat USA 2020 talk. Continue Reading
News 04 Aug 2020

Twitter breach raises concerns over phone phishing

The alleged mastermind behind the Twitter breach has been arrested, and the method of social engineering attack has also been revealed: phone phishing, or vishing. Continue Reading
Feature 03 Aug 2020

Security pros explain how to prevent cyber attacks

Even during pandemics, hackers use malware such as ransomware and phishing to exploit an organization's vulnerabilities. IT security pros discuss how they prevent cyber attacks. Continue Reading
Opinion 03 Aug 2020

The case for cybersecurity by design in application software

Security must be part of IT from the start and then continue through the entire product lifecycle -- design, build, release and maintenance. Consumers now demand it. Continue Reading
News 29 Jul 2020

IBM: Compromised credentials led to higher data breach costs

The average total cost of a data breach is $3.86 million, according to new research from IBM and the Ponemon Institute, and compromised credentials are the biggest reason why. Continue Reading
News 20 Jul 2020

Twitter breach caused by social engineering attack

Twitter was breached last Wednesday though a social engineering attack. Forty-five accounts were hijacked and up to eight accounts may have had their private messages stolen. Continue Reading
Podcast 17 Jul 2020

Risk & Repeat: Twitter breach leads to account hijacking

This week's Risk & Repeat podcast discusses how threat actors gained access to Twitter's internal systems and hijacked the accounts of Jeff Bezos, Bill Gates and others. Continue Reading
News 15 Jul 2020

Citrix data exposed in third-party breach

Citrix CISO Fermin Serna said a third-party organization is investigating a data breach after some of the vendor's customer data ended up on a dark web marketplace. Continue Reading
News 09 Jul 2020

Data theft in ransomware attacks may change disclosure game

Many ransomware attacks aren't publicly disclosed. But as ransomware gangs continue to steal, encrypt and threaten to publicly release data, that may be changing. Continue Reading
News 26 Jun 2020

Maze ransomware hit biggest target yet with LG breach

The operators of Maze ransomware claim to have breached LG, offering three screenshots as proof. One of those screenshots features LG product source code. Continue Reading
News 16 Jun 2020

Repeat ransomware attacks: Why organizations fall victim

Some organizations get hit with ransomware multiple times. Threat researchers explain why repeat attacks happen and how victims can prevent it from occurring again. Continue Reading
News 29 May 2020

Cisco servers breached through SaltStack vulnerabilities

Threat actors exploited critical SaltStack flaws, which were disclosed and patched last month, in a Cisco product to breach several of the networking company's salt-master servers. Continue Reading
News 19 May 2020

Verizon DBIR: Breaches doubled, but plenty of silver linings

The 2020 Verizon Data Breach Investigations Report showed the number of confirmed breaches last year nearly doubled, but it also highlighted some positive trends. Continue Reading
News 12 May 2020

Q1 data breaches down, but exposed records reach new high

Threat intelligence firm Risk Based Security released its 2020 Q1 Report, which shows a 273 percent increase in exposed records and 42 percent decrease in publicly reported breaches. Continue Reading
News 07 May 2020

Advanced Computer Software leak exposes nearly 200 law firms

Researchers at cybersecurity vendor TurgenSec discovered an exposed database owned by Advanced Computer Software that contained legal documents with data from 190 law firms. Continue Reading
News 05 May 2020

Critical SaltStack vulnerabilities exploited in several data breaches

SaltStack patched two critical vulnerabilities in its software last week, but hackers used the flaws over the weekend to breach several unpatched networks and systems. Continue Reading
Tip 25 Mar 2020

Answering the top IoT risk management questions

Vulnerable IoT devices are commonly installed on enterprise networks, putting IT on the lookout for security issues. Here are answers to the biggest IoT risk management questions. Continue Reading
News 24 Mar 2020

Canon breach exposes General Electric employee data

Canon Business Process Services was breached last month, according to an announcement by General Electric, which used Canon for employee document processing. Continue Reading
Opinion 12 Mar 2020

The future of facial recognition after the Clearview AI data breach

The company that controversially scrapes data from social media sites for law enforcement clients announced a data breach. What does it mean for the future of facial recognition? Continue Reading
News 09 Mar 2020

Researchers develop new side channel attacks on AMD chips

Security researchers behind the Meltdown and Spectre flaws discovered new side channel attacks on AMD processors, but the chipmaker has opted not to patch them. Continue Reading
News 26 Feb 2020

CISA chief can't guarantee election security

CISA Chief Christopher Krebs told RSA attendees he can't guarantee election security. Krebs also discussed CISA's efforts against Iranian hackers and ransomware attacks. Continue Reading
Feature 10 Feb 2020

Beat common types of cyberfraud with security awareness

Hackers are taking deception to a new level, but security awareness programs are instrumental in helping employees detect various types of cyberfraud. Continue Reading
News 10 Feb 2020

Chinese military personnel charged in Equifax breach

Four members of China's military have been charged for hacking Equifax following a 2017 breach that compromised nearly 150 million Americans' personal information. Continue Reading
Podcast 05 Feb 2020

Risk & Repeat: 2019 data breaches in review

This week's Risk & Repeat podcast looks at some of the biggest data breach disclosures from the second half of 2019 and discusses the trends around these incidents. Continue Reading
Opinion 03 Feb 2020

2 components of detection and threat intelligence platforms

Deploying threat detection and intelligence platforms is one of the smartest ways to protect your organization's valuable assets. Make sure you know how to choose the best tool. Continue Reading
Infographic 03 Feb 2020

Data breach costs hit hard; where are you most vulnerable?

Breaking down the cost of a data breach isn't for the faint of heart. But with millions of dollars on the line for a single event, companies also need to have their eyes wide open. Continue Reading
Feature 03 Feb 2020

Threat intelligence offers promise, but limitations remain

Do you know how to use threat intelligence feeds to best effect in your company? Learn what this valuable yet often confusing resource can and can't do for cybersecurity. Continue Reading
Opinion 03 Feb 2020

Fresh thinking on cybersecurity threats for 2020

It's a good time to take a clear-eyed view of the likely security threats facing your organization. But then what? Experts suggest getting creative with your threat responses. Continue Reading
E-Zine 03 Feb 2020

Getting the most from cyberthreat intelligence services

Continue Reading
News 30 Jan 2020

Payment cards from Wawa data breach found on dark web

Payment card information from customers of the convenience store chain Wawa has reportedly gone up for sale on the dark web, though questions about the breach remain. Continue Reading
Tip 27 Jan 2020

Protect against evolving data security threats

As data security threats evolve, knowing how to protect your data is more important than ever. Learn about the latest security threats and how to ward them off. Continue Reading
News 21 Jan 2020

2019 data breach disclosures: 10 more of the biggest

Here is a list of 10 of the largest data breaches (mostly) from the second half of 2019, including DoorDash, T-Mobile, Capital One and more. Continue Reading