Security News

Data breach costs hit record high due to pandemic
2021-07-28 17:28

A report released Wednesday by IBM Security looks at how and why the average cost of dealing with a data breach has jumped to a new high. To compile its "Cost of a Data Breach Report 2021" IBM Security commissioned Ponemon Institute to survey more than 500 organizations hit by data breaches.

University of San Diego Health Says Personal Information Stolen in Data Breach
2021-07-28 12:31

University of San Diego Health this week revealed that personal information was accessed in a data breach involving unauthorized access to some employee email accounts. In a substitute notification, UC San Diego Health revealed that an unknown threat actor accessed or acquired the affected data between December 2, 2020 and April 8, 2021.

IBM: Average Cost of Data Breach Exceeds $4.2 Million
2021-07-28 11:13

A global study commissioned by IBM Security shows that the average cost of a data breach exceeded $4.2 million during the coronavirus pandemic, which the company pointed out is the highest in the 17-year history of its "Cost of a Data Breach" report. The average cost of a data breach increased by nearly 10% compared to the previous year, from $3.86 million to $4.24 million, but IBM noted that "Costs were significantly lower for some of organizations with a more mature security posture, and higher for organizations that lagged in areas such as security AI and automation, zero trust and cloud security."

UC San Diego Health discloses data breach after phishing attack
2021-07-27 20:06

UC San Diego Health, the academic health system of the University of California, San Diego, has disclosed a data breach after the compromise of some employees' email accounts. UC San Diego Health is one of the nation's best hospitals, being repeatedly ranked as the best health care system in San Diego, according to the 2021-2022 U.S. News & World Report survey.

36% of organizations suffered a serious cloud security data leak or a breach in the past year
2021-07-27 05:30

As cloud adoption accelerates and the scale of cloud environments grows, engineering and security teams say that risks-and the costs of addressing them-are increasing. The survey of 300 cloud pros found that 36% of organizations suffered a serious cloud security data leak or a breach in the past 12 months, and eight out of ten are worried that they're vulnerable to a major data breach related to cloud misconfiguration.

US legal eagles representing Apple, IBM, and more take 5 months to inform clients of ransomware data breach
2021-07-20 10:45

Law firm Campbell Conroy & O'Neil has warned of a breach from late February which may have exposed data from the company's lengthy client list of big-name corporations including Apple and IBM. The breach, which was discovered on 27 February 2021 when a ransomware infection blocked access to selected files on the company's internal systems, has been blamed on an unnamed "Unauthorised actor." While it's not yet known precisely what data was accessed during the breach, the system affected held a treasure trove including "Certain individuals' names, dates of birth, driver's license numbers/state identification numbers, financial account information, Social Security numbers, passport numbers, payment card information, medical information, health insurance information, biometric data, and/or online account credentials," the company confirmed in a statement regarding the attack.

Saudi Aramco data breach sees 1 TB stolen data for sale
2021-07-19 12:02

Attackers have stolen 1 TB of proprietary data belonging to Saudi Aramco and are offering it for sale on the darknet. Saudi Aramco has pinned this data incident on third-party contractors and tells BleepingComputer that the incident had no impact on Aramco's operations.

You'll never Guess whose data has been nicked as US fashion firm confirms systems breach
2021-07-13 14:45

Fashion brands Guess and Spread Group have confirmed data breaches in which crooks walked off with US Social Security Numbers, contracts, passwords, payment details, and more. Guess warned that SSNs, driving licence numbers, passport numbers, and financial account numbers of "Certain individuals" had been obtained by the attackers; Spread Group saw a somewhat wider breach leaking hashed passwords, payment details, and contract information for both customers and suppliers.

Fashion Retailer Guess Notifies Users of Data Breach
2021-07-13 04:03

Fashion retailer Guess last week confirmed that the personal data of some customers was compromised in a ransomware attack it suffered in February 2021. The incident, Guess says, was discovered on February 19.

What is the cost of an insider data breach?
2021-07-13 04:00

According to a recent study conducted by Aberdeen, an insider data breach can cost as much as 20% of annual revenue. Allowing the freedom of data movement and keeping trade secrets, including source code, and confidential customer lists, business plans, pricing and the like - secure from malicious and unintentional insider risks will be a continuing challenge if security organizations don't recast their data security strategies and approach to data stewardship.