Malware
Shocking Cyber Heist: Over 25,000 People’s Data Stolen in 2023 Breach
Hey there, I’m Peter Zendzian, and today I want to talk to you about a cybersecurity nightmare that happened in 2023. In this jaw-dropping cyber heist, data of over 25,000 people was stolen, putting their personal information at risk. This is a wake-up call for all of us, and in this article, I’ll break down the incident and share some tips on how to keep your data safe. So, buckle up, and let’s dive right in.
Unmasking the 2023 Breach
Imagine waking up one day to find out that your personal information, like your name, address, and even social security number, has been stolen. That’s exactly what happened to over 25,000 innocent people in the U.S. when cybercriminals breached a major company’s database. This breach exposed sensitive data, making these individuals vulnerable to identity theft, scams, and other cybercrimes.
But, how did this happen? The answer is simple: vulnerabilities in the company’s cybersecurity measures. Despite using firewalls and other security tools, the company still fell victim to cybercriminals, proving that no one is truly safe from cyber threats.
Alarming Cybersecurity Stats You Should Know
This breach is just the tip of the iceberg. Here are some shocking statistics that highlight the growing cyber threat:
- There’s a cyberattack every 39 seconds on average, affecting one in three Americans each year.
- 95% of cybersecurity breaches are caused by human error.
- Since COVID-19, the FBI has reported a 300% increase in reported cybercrimes.
- By 2025, cybercrime damages are expected to cost the world $10.5 trillion annually.
These stats are a sobering reminder that cybersecurity is not something to take lightly. It’s time to act and protect ourselves and our data from cybercriminals.
How to Safeguard Your Data and Stay Cybersecure
Now that you know the risks, let’s discuss some simple yet effective steps to keep your data safe:
- Use strong passwords: Create complex, unique passwords for each account and change them regularly.
- Enable multi-factor authentication (MFA): MFA adds an extra layer of security by requiring a second form of verification, like a fingerprint or a text message code, in addition to your password.
- Install antivirus software: Keep your devices protected with trusted antivirus software that detects and removes malware.
- Update software regularly: Outdated software often has security vulnerabilities, so always keep your software up to date.
- Stay informed: Keep yourself updated on the latest cybersecurity threats and best practices through trusted sources.
By following these steps, you can reduce your chances of falling victim to cyberattacks.
It’s Time to Take Action
Remember, the best defense against cyber threats is knowledge and awareness. Don’t wait until it’s too late. Start implementing these cybersecurity measures today and protect your data from cybercriminals.
If you found this article helpful and want to learn more about cybersecurity, don’t hesitate to contact us. We’re here to help you stay informed and keep your data safe. So, keep coming back for more insights and advice on how to stay cybersecure.
Cybersecurity: Making It Personal and Easy to Understand
Hey there! I’m Peter Zendzian, and I’m here to take you on a journey through the world of cybersecurity. If the word “cybersecurity” sounds intimidating, don’t worry – I’ll be your friendly ghostwriter, breaking down complex concepts into relatable stories and analogies. So, let’s dive in!
Why should you care about cybersecurity?
Imagine your house with all its doors and windows wide open. You wouldn’t feel safe, right? That’s exactly how your digital life is without proper cybersecurity measures. Every day, cybercriminals are looking for ways to steal your personal information, money, and even your identity. In fact, in 2021 alone, there were over 1,000 reported data breaches, affecting more than 155 million people in the U.S. It’s time to take action and secure your digital home!
Let’s break down some cybersecurity terms
When it comes to cybersecurity, there’s a whole new language to learn. But don’t worry, I’ll explain the key terms in regular, everyday language:
- Malware: Think of malware as the flu virus for your computer or smartphone. It can spread easily and cause all sorts of problems, from stealing your data to crashing your device.
- Phishing: This is like a digital con artist trying to trick you into giving away your personal information. They often use fake emails or websites that look like ones you trust.
- Firewall: Picture a castle with a moat around it. The moat (firewall) keeps the bad guys out and your valuable data safe inside.
Simple steps to protect yourself online
You don’t need to be a cybersecurity expert to keep your digital life safe. Here are some easy steps you can take:
- Use strong, unique passwords: Your password is like the key to your digital home. Make sure it’s strong and not easily guessable. And don’t use the same one for all your accounts!
- Enable two-factor authentication (2FA): This is like adding an extra lock to your digital door, making it even harder for cybercriminals to break in.
- Keep your software up-to-date: Just like you’d fix a leaky roof, make sure to patch any security holes by updating your software regularly.
Join me on this cybersecurity journey
Now that we’ve taken the first steps together, I encourage you to continue learning about cybersecurity. Knowledge is power, and the more you know, the safer you’ll be online. So, don’t hesitate to reach out to me and come back for more insights, stories, and advice on keeping your digital life safe and secure.
Together, we can make the internet a safer place for everyone.
Imagine waking up one day, only to find out that your personal and financial information has been stolen in a security breach. This is what happened to 25,549 individuals whose data was compromised in a recent cybersecurity attack on the Philadelphia Inquirer, the city’s largest newspaper and the third-longest operating daily newspaper in the United States.
The Attack and Its Aftermath
Picture this: It’s May 2023, and the Philadelphia Inquirer’s content management system suddenly goes down. The newspaper quickly realizes that something is amiss and takes some computer systems offline to contain the breach. They also bring in Kroll forensics experts to investigate the “anomalous activity.”
As a result of the attack, the publication of the print newspaper is disrupted, and home-delivery subscribers are asked to catch up with the latest news using the newspaper’s website, which remains unaffected.
In their data breach notifications, the Inquirer states, “We determined that an unauthorized party gained access to our systems and certain files were viewed and/or copied from our systems between May 11, 2023, and May 13, 2023.” The exposed information includes names, personal identifiers, and financial account numbers, as well as credit/debit card numbers (in combination with security code, access code, password, or PIN for the accounts).
The newspaper advises affected individuals to monitor their accounts for identity theft and fraud attempts and offers 24 months of free Experian credit monitoring and identity restoration services.
The Culprit: Cuba Ransomware Gang
Although the Inquirer doesn’t reveal who’s responsible for the attack, the Cuba ransomware gang takes credit for it one week after the incident. The group claims to have stolen financial documents, correspondence with bank employees, balance sheets, tax documents, compensation, and source code from the newspaper’s compromised servers.
Cuba then publishes the files on its dark web leak site, which suggests that the Inquirer refused to pay a ransom and the extortion attempt hit a dead end. However, the Inquirer later reports that the documents don’t “appear to come from the newspaper.” Subsequently, the ransomware gang removes the Philadelphia Inquirer entry from its website.
The Bigger Picture: Ransomware Attacks on the Rise
The Cuba ransomware gang is no stranger to such attacks. According to a joint security advisory by the FBI and CISA, the group collected over $60 million in ransoms until August 2022 after breaching more than 100 victims worldwide. A previous FBI advisory from December 2021 also warned that Cuba operators had compromised at least 49 U.S. critical infrastructure organizations.
Don’t Be the Next Victim: Protect Yourself and Your Information
The Philadelphia Inquirer breach is a stark reminder that we all need to be vigilant about our cybersecurity. Whether you’re an individual or a business owner, it’s crucial to stay informed and take necessary precautions to protect your data from potential threats.
So, what are you waiting for? Get in touch with us at IT Services to learn more about how to safeguard yourself from cyberattacks and keep your information secure. We’re here to help you stay one step ahead of the bad guys and ensure your peace of mind.
Malware
Avis Reveals Massive Data Breach: Customer Information Compromised in Car Rental Empire
Car rental company Avis recently disclosed a data breach affecting customer data. The breach exposed sensitive information such as names, addresses, and phone numbers. Protect your personal information by staying vigilant and monitoring your accounts for any suspicious activity.
Image removed
Did you hear the news? American car rental giant Avis recently informed customers that cybercriminals breached one of its business applications last month and stole some of their personal information.
According to data breach notification letters sent to impacted customers and filed with California’s Office of the Attorney General, Avis took action to stop the unauthorized access and launched an investigation with the help of external cybersecurity experts after learning of the breach on August 5th.
What did the investigation uncover?
The investigation revealed that the attacker had access to Avis’s business application from August 3rd to 6th. The company managed to evict the malicious actor from its systems and blocked its access on August 6th. On August 14th, it also discovered that the attacker stole some customers’ personal information, including their names and other undisclosed sensitive data.
Since the breach, Avis says it has worked with outside experts to strengthen security measures for the affected application and implemented additional safeguards across its systems.
What has Avis done to protect its customers?
Avis has been actively reviewing security monitoring and controls to bolster security defenses and warned customers of identity theft and fraud risks following the data breach. The company advised those whose personal information was stolen to remain vigilant against threats of identity theft or fraud. They suggested customers do this by regularly reviewing and monitoring their account statements and credit history for any signs of unauthorized transactions or activity and contacting credit reporting agencies if they suspect any unauthorized activity.
Moreover, Avis offered those affected a free one-year membership to Equifax’s credit monitoring service, which provides assistance with identity theft detection and resolution.
About Avis and its global presence
Avis is a subsidiary of Avis Budget Group, a leading global mobility solutions provider that also owns Zipcar, the world’s leading car-sharing network. Its Avis and Budget car rental brands operate over 10,000 rental locations in 180 countries across North America, Europe, and Australasia. Avis Budget Group has reported more than $3.0 billion in revenues for the second quarter of 2024.
We reached out to Avis for more information about the attack’s nature, the number of affected customers, and the other personal information stolen in the breach, but the company has not responded yet.
Stay informed and protected
Cybersecurity is more important than ever, and we at IT Services are dedicated to helping you stay informed and protected. We encourage you to keep coming back to learn more about the latest cybersecurity news and trends. Together, we can make the digital world a safer place for everyone. If you have any questions or concerns, don’t hesitate to contact us!
Malware
Massive Data Breach Exposed: Business Powerhouse CBIZ Reveals Customer Information Compromised
CBIZ, a leading provider of business services, has disclosed a data breach affecting customer information. The breach occurred when an unauthorized third party accessed an employee’s email account, potentially compromising clients’ names, addresses, and Social Security numbers. CBIZ is offering free credit monitoring services to affected clients and has implemented additional security measures.
Imagine waking up one day to find out that your personal information has been stolen by hackers. Your name, contact details, social security number, date of birth, and even your health information are now in the hands of cybercriminals. This nightmare scenario recently became a reality for thousands of people when a major U.S. company fell victim to a data breach.
CBIZ: A Cybersecurity Wake-up Call
CBIZ Benefits & Insurance Services (CBIZ), one of the largest professional services companies in the United States, recently disclosed a significant data breach involving unauthorized access to client information stored in specific databases. This management consulting company, which provides financial and benefits and insurance services to various organizations and individual customers, reported that a threat actor exploited a vulnerability in one of its web pages and stole customer data between June 2 and June 21.
Upon discovering the intrusion on June 24, CBIZ launched an investigation with the help of cybersecurity professionals. They found that an unauthorized party was able to exploit a vulnerability associated with one of its web pages and acquire information from certain databases during the three-week period. To put things in perspective, CBIZ operates 120 offices across the country, employs 6,700 people, and recorded a revenue of $1.59 billion in 2023.
What Was Stolen?
Hackers managed to steal information belonging to nearly 36,000 individuals. The compromised data includes:
- Name
- Contact details
- Social Security number
- Date of birth/death
- Retiree health information
- Welfare plan information
Protecting Yourself and Your Data
CBIZ began sending personalized notifications to impacted clients on August 28, informing them of the breach. While the company has no evidence that the stolen data has been misused, they are offering guidance on how to enroll in a two-year credit monitoring and identity theft protection service to reduce potential risk. Additionally, impacted clients are advised to consider placing a credit/security freeze and adding a fraud alert to their credit report.
This incident serves as a stark reminder of the importance of cybersecurity and the need to protect our personal information. Cyberattacks are becoming more frequent and sophisticated, and businesses of all sizes must take the necessary precautions to safeguard their customers’ data. As individuals, we must also stay informed and vigilant to protect ourselves from the consequences of data breaches.
Don’t Be a Victim: Stay Informed and Take Action
Here at IT Services, our mission is to help you stay ahead of cyber threats. We provide the latest news, updates, and resources on cybersecurity to help you protect your digital footprint. Whether you’re a business owner or an individual user, knowledge is power when it comes to defending against cyberattacks. So don’t wait for a wake-up call like CBIZ – take action now to secure your digital life.
Stay informed and keep coming back to learn more. And remember, if you have any concerns or questions about cybersecurity, we’re here to help. Don’t hesitate to contact us for expert advice and support.
Malware
DICK’S Sporting Goods Halts Email & Locks Employee Accounts Following Intense Cyberattack
US retailer Dick’s Sporting Goods suffered a cyberattack, prompting the company to shut down employee email accounts and reset passwords. Discover how the attack unfolded and what measures the company is taking to prevent future incidents.
Last Wednesday, DICK’S Sporting Goods, the largest chain of sporting goods retail stores in the United States, discovered a cyberattack that exposed confidential information. With $12.98 billion in revenue in 2023 and over 857 stores across the country, this breach impacts a significant number of people.
Responding to the Cyberattack
In a filing with the U.S. Securities and Exchange Commission (SEC), DICK’S has hired outside cybersecurity experts to help contain the security breach and assess the impact. The company stated, “On August 21, 2024, the Company discovered unauthorized third-party access to its information systems, including portions of its systems containing certain confidential information.”
As soon as the incident was detected, DICK’S activated its cybersecurity response plan and engaged external cybersecurity experts to investigate, isolate, and contain the threat.
Keeping Information Under Wraps
According to an anonymous source, the company has been tight-lipped about the breach and has instructed employees not to discuss it publicly or put any information in writing. The same source revealed that email systems had been shut down, likely to isolate the attack, and all employees were locked out of their accounts. IT staff is now manually validating employees’ identities on camera before granting access to internal systems.
In an internal memo, DICK’S informed employees that most of them no longer have access to their systems due to a “planned activity” and that team leaders will contact them via personal email or text for further instructions.
Business Operations Unaffected
Phone lines at local stores are currently down due to the incident, but the company has reported no disruption to their business operations to date. In their SEC filing, DICK’S stated, “The Company has also notified federal law enforcement. The Company has no knowledge that this incident has disrupted business operations. The Company’s investigation of the incident remains ongoing.”
Although the company believes the incident is not material at this point, the investigation is still in progress, and the full impact remains to be seen.
What You Can Do
Cybersecurity is a critical concern for businesses and individuals alike. We at IT Services are committed to keeping you informed and protected. Stay tuned for updates on this situation, and don’t hesitate to reach out to us for advice and assistance in safeguarding your personal and professional information. Let’s work together to stay one step ahead of cyber threats.
Avis Reveals Massive Data Breach: Customer Information Compromised in Car Rental Empire
Massive Data Breach Exposed: Business Powerhouse CBIZ Reveals Customer Information Compromised
DICK’S Sporting Goods Halts Email & Locks Employee Accounts Following Intense Cyberattack
Flagstar Bank’s Latest Data Breach: 800,000 Customers Impacted, Marking the Third Incident of 2021
Blackbaud: Taking Responsibility with a Landmark $49.5 Million Settlement for Devastating Ransomware Data Breach
Top Data Protection Officer Certification Courses Reviewed
-
Malware11 months agoFlagstar Bank’s Latest Data Breach: 800,000 Customers Impacted, Marking the Third Incident of 2021
-
Malware11 months ago
Blackbaud: Taking Responsibility with a Landmark $49.5 Million Settlement for Devastating Ransomware Data Breach
-
Data Protection Regulations10 months ago
Top Data Protection Officer Certification Courses Reviewed
-
Security Audits and Assessments10 months ago
Mastering Healthcare Data Security: 5 Essential Audit Tips
-
Data Protection Regulations10 months ago
Top 11 Data Protection Training Programs for Compliance
-
Data Protection Regulations10 months ago
Navigating Data Protection Laws for Nonprofits
-
Data Protection Regulations10 months ago
9 Best Insights: CCPA’s Influence on Data Security
-
Security Audits and Assessments10 months ago
HIPAA Security Risk Assessment: Essential Steps Checklist
