Recent Class-Action Settlement and FCC Fine Underscore the High Costs of Failed Data Security
Two notable data breaches, each impacting millions of US consumers, resulted in companies paying over $40 million in fines or settlements.
top of page
FRAUDBLOG
Search
Justin McDonald
Sep 15, 20232 min read
Social Engineering, Ransomware Attacks Target Vegas Casinos
Social engineering tactics led to both a ransomware attack and data breach against Caesars Entertainment and MGM Resorts.
Justin McDonald
Aug 3, 20232 min read
Apparel Retailer Suffers Data Breach via Credential Stuffing Bot Attack
This is an all-too-common example of an account takeover (ATO) attack with lessons to be learned by both organizations and consumers.
Justin McDonald
Jun 2, 20231 min read
Members of Hacker Forum Suffer Data Breach with PII Posted on Another Hacker Forum
Nearly 480,000 members of the now defunct, dark web hacker forum RaidForums got a taste of their own medicine when their personal...
Justin McDonald
May 16, 20232 min read
Ransomware Attack Against PharMerica Leads to 5.8 Million SSNs Available on the Dark Web for Free
A ransomware group claimed to have 4.7 TB of data stolen from pharmacy services provider PharMerica, including the full names, addresses,...
Justin McDonald
Jan 23, 20232 min read
Over 24.6 Billion Usernames and Passwords Have Been Compromised Since 2016
According to a study by Digital Shadows, over 24.6 billion username and password combinations have been exposed due to data breaches....
Justin McDonald
Jan 23, 20231 min read
37 Million T-Mobile Customers Implicated in Recent Data Breach
A hacker exploited a vulnerability in an API enabling them to access personally identifiable information of 37 million T-Mobile...
Justin McDonald
Jan 19, 20231 min read
Nearly 60 Million Payment Cards Sold on the Dark Web in 2022 and 70 Percent were Issued in the US
59.4 million payment cards were compromised and posted for sale on the dark web in 2022 with 77 percent of these card compromised in the...
Justin McDonald
Nov 4, 20222 min read
Excessive Data Breaches Bring Additional Action Beyond Fines and Penalties per Incident
Education Technology provider Chegg is facing an FTC lawsuit requiring them to implement multi-factor authentication, improve data...
Justin McDonald
Sep 7, 20222 min read
800+ Data Breaches and Over 53 Million Consumers Compromised in the First Half of 2022
After the first half of 2022, the number of data breaches for the year is on pace to fall below the all-time high set in 2021, but still...
Justin McDonald
Jul 20, 20221 min read
The Average Cost of a Data Breach has Doubled Since 2018
The average cost of a data breach including consumer identity information in the United States reached $9.5 million in 2021, up 16...
Fraud Practice
Nov 5, 20212 min read
Number of Disclosed Data Breaches Down 50% but Exposed Records Up 400% in First Half of 2020
While there are some questions around the number of data breaches thus far, 2020 is shaping up to be a record year in terms of number of...
Fraud Practice
Nov 5, 20211 min read
More than 1-in-10 Ransomware Attacks Involve Threat of Releasing Consumer or Client Data
Turning ransomware attacks into data breaches if the ransom isn’t paid, what’s being called exfiltration+encryption attacks, can be...
Fraud Practice
Nov 5, 20212 min read
State Unemployment Systems Battered With Breaches and Identity Fraud
The state of Arkansas shut down their unemployment application website which exposed the PII of nearly 30,000 applicants and Illinois...
Fraud Practice
Nov 5, 20212 min read
How to Secure Your Video Chats and Meetings to Protect Against “Zoombombing”
Keeping unwanted parties out of business meetings can range from important to imperative depending on the topics and focus of the video...
Fraud Practice
Nov 5, 20212 min read
Government Agencies in Puerto Rico Fall Prey to Pair of Spear Phishing Attacks
After compromising the email account of a government official at one agency, targeted phishing attacks were sent from this trusted...
Fraud Practice
Nov 5, 20211 min read
Massive Wawa Data Breach Puts Unknown Number of Cards in Hands of Fraudsters
Wawa announced a large-scale malware compromise breaching payment cards processed at the pump or inside between March 4 and December 12,...
Fraud Practice
Nov 5, 20211 min read
Nearly Four Thousand Data Breaches, Four Billion Records Compromised in First Half of 2019
More than 3,800 data breaches occurred in the first half of this year, a 54 percent increase from the first half of 2018. The number of...
Fraud Practice
Nov 5, 20212 min read
Nearly 450 Million Consumer Records with PII Exposed in 2018
According to the Identity Theft Resource Center, who just released their 2018 End-of-Year Data Breach Report, the number of data breaches...
Fraud Practice
Nov 5, 20211 min read
Germany Issues First GDPR Fine Following Data Breach at Social Media Company
Nearly 2 million username and password combinations along with 330,000 email and password combinations were exposed in a data breach...
bottom of page