News of a second major data breach took place because of unprotected databases and servers, which has now left 763 million unique emails from Verifications.io exposed. This breach just equipped cybercriminals with 763 million opportunities to commit fraud, but it also exposed “business intelligence data,” including employee and revenue figures, in an unusual circumstance.
there's a good chance your data is part of the https://t.co/t86JDdFFwG data breach, even if you're careful with your e-mail address etc. Check https://t.co/h6wgp38Jao @haveibeenpwned https://t.co/Ig5U0dMxHG
— Privacy Lab @ Yale Law School (@PrivacyLabISP) March 10, 2019
Kevin Gosschalk, CEO at Arkose Labs:
“This is the second major data breach in one week resulting from companies leaving business-critical databases and servers unprotected, which is alarming. Cybercriminals are engaging in digital warfare, and the frequency and scale of data breaches are increasing. Companies must take the necessary precautions to protect their digital ecosystems from attacks, because exposing 763 million unique email addresses in a breach arms cybercriminals with 763 million new opportunities to commit fraud.
Companies need to be actively watching their attack surface and enforce multi-factor authentication before the next attack takes place. Nine out of 10 login attempts are Account Takeover attacks using credential stuffing, and cybercriminals will use this exposed data to achieve account takeovers at-scale. All companies need to be prepared to defend against new attacks being executed using this compromised information.”
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
