Weekly Cybersecurity Recap November 4
Table of Contents
- By Steven
- Nov 04, 2022
Over 30,000 businesses get hacked each day. In 2021 alone, there were 22 billion records breached. Think about that for a second; 7.98 billion people on the planet, and yet 22 billion records have been stolen. Adding the fact that there are people in third world countries who don’t have electricity, let alone internet, so we can take that percentage out of the equation. Plus, there’s someone’s grandpa who refuses to “touch one of those stinkin’ computers,” so we won’t include him either. 4.9 billion people use the internet. So how is it possible that there were 22 billion records stolen?
The answer is simple. Everyone who has used the internet has had their information stolen. Every person who ordered something from Walmart, Amazon, or Publix. Anyone who has signed up for a newspaper or magazine. If the internet has any of your data, so does a hacker. Breaches are constantly happening, and everyone is affected. Let’s take a look at some of this week’s breach news.
In August, Twilio announced a data breach. At the time, the investigation was incomplete, but continued research proved that there were more breaches than initially thought. Many breaches stemmed from the Twilio violation, including, Doordash and Signal. The combined breaches caused by the Twilio hack affected thousands of users.
US Bancorp is the parent company of the fifth-largest banking institution in the US, the US Bank. A US Bank employee accidentally sent personally identifying data, including outstanding account balances, closed account numbers, social security numbers, names, addresses, and birthdays, to an unauthorized third party. The bank promised users that the information was immediately returned and secured, allowing some to relax. Of course, there is always the possibility that one member of the recipient group copied the data and planned to use it for their gain, be it using the information or selling it. This has caused a bit of worry among US Bank customers, but the bank is assuring everyone that their data is safe.
Bed Bath and Beyond
Bed Bath and Beyond suffered a data breach involving the personal information of an undisclosed number of customers. The attack occurred when four Bed Bath and Beyond employees fell for a phishing scam. Phishing is the most common type of hack and is one that everyone should be educated on to avoid situations like this. Bed Bath and Beyond’s investigation has given no sign that the breach involved customer information.
Drizly, the alcohol delivery service, announced a data breach in 2020. While the hack only affected 2% of Drizly users, the Federal Trade Commission is proposing an order that will force Drizly to delete all non-vital information that it has on customers.
Filing company Dropbox suffered a data breach that affected only a few thousand users and employees. The breach had very little personal information involved; the hackers only had access to names and email addresses. While this still threatens the victims, much worse things could have come of the breach.