This week’s Knowledge Update talks about the 2013 Yahoo data breach that hit three billion accounts, stats from the latest data protection survey by SANS and the fears and concerns about the possible implications of the General Data Protection Regulation.
Yahoo 2013 data breach hit ‘three billion accounts’
Yahoo has revealed that all three billion of its accounts were affected during a cyber-attack back in 2013. The stolen data did not include passwords in clear text, payment card or bank account data, it added. Previously the internet giant had said “more than one billion” of its accounts had been hit. Yahoo said that while its latest announcement did not represent a new “security issue” it was sending emails to all the “additional affected user accounts”. The company
added that it was “continuing to work closely with law enforcement”.
Such large-scale breaches reinforce the need to have strong and separate passwords to ensure that individual breaches will not affect all your accounts. Information on strong passwords can be found here.
Shocking stats from the latest data protection survey by SANS
The latest data protection survey from SANS has found that:#
- 78 percent of respondents have seen two or more different types of threats over the last 12 months, with 68 percent having seen the same threat types multiple times.
- 48 percent of those who sustained a breach report that the incident resulted in the exfiltration of sensitive data, with the primary transport of the data being an encrypted channel established by malware with a secondary factor being email.
Businesses seeking to protect their data better should look to become Cyber Essentials compliant. Cyber Essentials is an accreditation backed by the UK Government that seeks to help improve small businesses digital security. More information on cyber essentials can be found here.
“GDPR Will Crash Your Entire Marketing Plan”: Fears, Realities & Choosing the Right Partners
The implementation of the General Data Protection Regulation is fast approaching, although organisations are
concerned about the possible implications of GDPR there are numerous resources available to help your organisation comply. Look at the ICOs official advice here.
Contacts us at Membership@LondonDSC.co.uk if you would like to talk through GDPR and how it could affect your business.