Bitglass Security Spotlight: T-Mobile, Coca-Cola, & Ticketfly

23

This post was originally published here by Jacob Serpa .

Here are the top cybersecurity stories of recent weeks: 

  • T-Mobile bug exposes customer data
  • Former employee breaches Coca-Cola
  • Ticketfly hit with cyberattack 
  • The average cost of a breach uncovered
  • BackSwap trojan targets bank accounts

T-Mobile bug exposes customer data

A bug in a lookup tool on T-Mobile’s website recently exposed its customers’ data. For anyone who had a T-Mobile customer’s phone number, they could effectively type in said number and be presented with a host of sensitive information, ranging from mailing address to tax identification number. Unfortunately, hackers are reported to have taken advantage of the bug for weeks. 

Former employee breaches Coca-Cola

A former employee of Coca-Cola is reported to have appropriated data upon leaving the company. The individual took a variety of personal information (belonging to about 8,000 employees) by saving it to a personal hard drive. This incident highlights the importance of controlling data wherever it goes and defending against insider threats

Ticketfly hit with cyberattack

A hacker recently executed a cyberattack against Ticketfly. The assault altered Ticketfly’s website’s user interface and may have granted access to files containing customer data. The company quickly paid the ransom of one Bitcoin in order to have the attacker reverse the damage.

The average cost of a breach uncovered

Leaks and breaches are becoming an increasingly common occurrence among organizations that are failing to exercise their due diligence in ensuring complete cloud security. Interestingly, the average cost of a data breach was just revealed. For an enterprise, the average cost is $1.23 million, whereas it is approximately $120,000 for SMBs. Clearly, it is more important than ever for organizations to defend against threats like malware.

BackSwap trojan targets bank accounts

A new variety of malware is designed to empty individuals’ bank accounts online. As financial services firmsare typically very security conscious, banking malware has to evolve quickly in order to remain effective. BackSwap essentially simulates user inputs in order to trick systems into surrendering bank account access. Read here for more information

To learn about cloud access security brokers (CASBs), advanced security tools built for the cloud, download the Definitive Guide to CASBs below. 

Photo:Network World