Threats

A breakdown of breaches by country. (Image courtesy of Gemalto.)

Report: 1.9b Records Lost in First Half of 2017, topping 2016

A survey of public data breaches has found a large increase in the number of records that have been stolen, lost or compromised in the first six months of 2017. The firm Gemalto said that the number of records caught up in breaches jumped 164% from the second half of 2016 and the first half 2017 to almost 2 billion lost records. That is more than the total number of records lost in all of 2016.  Gemalto said its latest data from the company’s Breach Level Index, a global database of public data breaches, indicates 918 data breaches led to 1.9 billion data records being compromised worldwide in the first half of 2017. Most of the leaked records came from just 22 large data breaches, each involving more than one million compromised records, the company said. How many records? Nobody knows. Even more worrying: of the 918 data breaches, the […]

FedEx said the Petya malware outbreak in its TNT subsidiary in June cost the company $300 million and will cause it to miss its fiscal first quarter earnings.

FedEx: NotPetya Cost $300m, Wrecked Q1 Earnings

FedEx, the worldwide package delivery giant, said in a regulatory filing on Tuesday that the NotPetya ransomware outbreak in late June has cost it an estimated $300 million dollars and forced the company to miss its fiscal first quarter earnings. The company said in its quarterly “8K” report to the U.S. Securities and Exchange Commission (SEC) that the impact of NotPetya on TNT Express N.V., a newly acquired subsidiary based in The Netherlands. “Worldwide operations of TNT Express were significantly affected during the first quarter by the June 27 NotPetya cyber attack,” the company reported. The subsidiary has restored “substantially all” critical operational systems but “volume, revenue and profit still remain below previous levels.” The statement is the latest on the effects of NotPetya, which spread by way of bogus updates for software by the Ukrainian firm MeDoc. In July, FedEx said in a filing with the Securities and Exchange Commission […]

After Equifax: What Makes a Good CSO? Also: App Sec is a Mess. We Talk about Why.

After Equifax: What Makes a Good CSO? Also: App Sec is a Mess. We Talk about Why.

What makes a good CSO? In the wake of the Equifax breach, we talk about the controversy over that company’s CSO’s music degree. Also: we talk with Signal Sciences about why companies keep getting hacked via application vulnerabilities like the Apache Struts hole that felled Equifax.

Equifax Executives Depart Amid Growing Backlash

Equifax Executives Depart Amid Growing Backlash

In-brief: Equifax said on Friday that its Chief Information Officer and Chief Security Officer had “retired” in the wake of a massive data breach that leaked sensitive on some 143 million people. 

Equifax named a six month old vulnerability as the cause of a devastating hack of information on 140 million people. It was patched in August.

Beset by Lawsuits, Scams, Investigations, Equifax names Source of Breach

In-brief: Beset by a plunging share price, class action lawsuits in dozens of states, pending Congressional hearings and a FTC investigation, Equifax on Wednesday finally settled speculation and named a six month old hole in a common software platform, Apache Struts, as the cause of a massive hack.