Links in “Cybersecurity/Data Breaches”

Recent research has found that men are 225% more likely to divulge personal information as the result of a phishing attack. The report further states that one key to protecting companies against phishing attacks is interactive training. In most companies, the number of phishing-prone staff tends to be around 16%, but after engaging in interactive training and simulated phishing attacks, the likelihood of employees being fooled drops down to 1% or 2%.” [10/2/15]

The NCUA joined other regulatory agencies in promoting awareness of cybercrime and terrorism as part of the annual National Cyber Security Awareness Month. The NCUA is scheduled to join others in promoting awareness of action including the release of a new cybersecurity assessment tool.[10/2/15]

The FTC went after Wyndham hotels for its nine security failures that resulted in three data breach incidents that exposed more than 600,00 payment cards and more than $10 million in fraudulent charges. Do any of these nine hit too close to home? [9/28/15]

The bad news just keeps coming for the 21.5 million individuals adversely affected by the massive data breach at the Office of Personnel Management. Now it seems that 5.1 million of those individuals also had their fingerprints stolen, as well. Experts say that for now the ability to misuse the fingerprints is limited, but that could change in the future. [9/25/15]

Best Inc., a credit repair company, was allegedly used as a front to defraud individuals and businesses, stealing 300 identities and more than $5 million. Two individuals are looking at up to 75 years in prison if convicted. [9/25/15]

Further testing its hypothesis that peeling an adhesive bandage off slowly is better than ripping it off quick, the Office of Personnel Management has just disclosed that 5.6 million fingerprints were stolen, not the 1.1 million it initially estimated. Unlike passwords, fingerprints can't be changed. [9/24/15]

A review of 10 years of data breaches finds healthcare, not banks, to be the biggest offender. Banks weren't even in the top four, which also included education, government and retail. However, because data breach laws do not apply to many industries, these industries' claim to this dubious top four distinction comes with the caveat that it only takes into account the breaches we know about. [9/23/15]

Survey finds that 52% of chief executives thought they had insurance coverage against cyber risks, and 15-20% of CFOs and risk officers thought they had it. Actually only 10% had it. "The difference between perception and reality is huge." [9/22/15]

U.S. law enforcement scores a couple of high profile wins in the war against cybercriminals, including one who was involved in the Heartland attacks that resulted in the theft of 160 million credit card numbers. Meanwhile, the hacking beat goes on. [9/18/15]

Survey finds that 43% of the time, the perpetrators of the data breach are internal actors. Of those, about half were intentional, and the other half accidental. Oops. [9/17/15]