Data Breach















             British Airways Fined £183 Million Under GDPR Over 2018 Data Breach - Britain's Information
             Commissioner's Office (ICO) today hit British Airways with a record fine of £183 million for failing to
             protect the personal information of around half a million of its customers during last year's security
             breach. British Airways, who describes itself as "The World's Favorite Airline," disclosed a breach
             last year that exposed personal details and credit-card numbers of up to 380,000 customers and
             lasted for more than two weeks. At the time, the company confirmed that customers who booked
             flights on its official website (ba.com) and British Airways mobile app between August 21 and
             September 5 had had their details stolen by attackers.

                    Source: https://thehackernews.com/2019/07/british-airways-breach-gdpr-fine.html






             National Trade Association Discloses Data Breach Tied to Alleged Phishing Attack - A national trade
             association has disclosed a data breach that allegedly took place following a successful phishing
             attack. On 3 July, the American Land Title Association (ALTA) said that the security incident affected
             title and settlement company usernames and passwords. It also noted that it first learned about the
             data breach on social media. ALTA, which serves as the voice of over 6,000 title insurance agents,
             abstracters and underwriters, clarified how it didn’t find any evidence indicating that this data
             shared by the ethical hacker originated from a specific system breach. Additionally, it explained that
             it had discovered no indicators of bad actors having misused those leaked credentials.

                    Source: https://www.tripwire.com/state-of-security/security-data-protection/national-trade-
                    association-data-breach-phishing-attack/




             Unprotected database belonging to MedicareSupplement.com exposed almost 5 million user
             records - A security researcher Bob Diachenko along with Comparitech uncovered a MongoDB
             database that was left open to the public without any authentication. The leaky database included
             almost 5 million records containing personal information of users such as names, addresses, dates of
             birth, gender, email addresses, and IP addresses. Additionally, almost 239,000 records were related
             to insurance interest area such as cancer insurance.

                    Source: https://cyware.com/news/unprotected-database-belonging-to-
                    medicaresupplementcom-exposed-almost-5-million-user-records-5aec44db













                                                    www.accumepartners.com                                           15