Marriott became aware of a data breach in September, 2018, when internal security tools signaled a potential data breach. When the company tried to view the information that might be compromised, they were unable to decrypt the data. Approximately 500 million user accounts were affected where the hackers got access to guest credit card numbers, date of births, gender, travel history, passport numbers, phone numbers and communication preferences.
The breach originated from the company’s health and fitness app, MyFitnessPal. Affected users may have had their user names, email addresses and credit card information compromised. The company notified the users whose information was hacked and is now spending more money on data security firms to assist with the investigation. Shares of Under Armour dropped by almost 4.0 percent.
In June, 2018 the company discovered a file containing email addresses and passwords for over 90 million users of the website on a private server. Even though the company uses segregated systems to store all user information, hackers got a hold of information of users that signed up for the service in or after October 2017. MyHeritage is now working with cyber security firms to develop strategies to prevent such incidents from taking place in the future.
In September, 2018 the company experienced an unusual spike in user activity. This caused the social media giant to investigate the problem and then the company confirmed that at least 50 million users’ accounts were at risk. Facebook claims that the hackers were after information like user names, genders, hometowns, etc. that is linked to a user’s profile page. Facebook has lost its users trust since the data breach and is now making efforts to secure the information on its systems.
British Airways reported that customers who made bookings using payment cards between April and July 2018 may have their credit card information compromised. Hackers may have gained access to email addresses, credit card numbers and other personal information that leaves their customers information at risk.
For more information on data breaches in 2018, click here.
The data that is stolen gets sold on the Dark Web. You know those email messages that you get with your password listed and a request for Bitcoins? This is where the information comes from. The information is sold to hackers who get creative and use social engineering to get you to click on their messages or take action so they can extort money from you. Use the steps below to safeguard your on line accounts.
- Use complex passwords and update them every 6 months or if you hear about a break for an organization in which you have an account.
- Do not use the same password for multiple on line sites.
- Implement two factor authentication where possible.
- Implement encryption on confidential files.
If you need help with reviewing the security posture of your firm and implementing a defensive security posture, please contact us.
Faraz Mehmood is a Sales & Marketing Coordinator at Triella. We are a technology consulting company specializing in providing technology audits, planning advice, project management and other CIO-related services to small and medium-sized firms. Faraz can be reached at 647.426.1004. For additional articles, go to our blog page. Triella is a VMware Professional Partner, Microsoft Certified Partner, Citrix Solution Advisor – Silver, Dell Preferred Partner, Authorized Worldox Reseller and a Webroot Reseller.
© 2019 by Triella Corp. All rights reserved. Reproduction with credit is permitted.